CVE-2024-47898

CVE-2024-47898 is a PowerVR-GPU vulnerability reported by Imagination Technologies. The issue stems from a use-after-free condition in PVRSRVDeviceSyncOpen, caused by improper memory reuse after release, which can be triggered by software running as a non-privileged user via GPU system calls. The...

CVE-2024-47898 GPU DDK - PVRSRVDeviceSyncOpen use-after-free condition

Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions...

CVE-2024-47891

CVE-2024-47891 targets Imagination Technologies PowerVR-GPU components (GPU driver). Affected behavior involves software run as a non-privileged user issuing improper GPU system calls that trigger a use-after-free in kernel objects (PTL_STREAM_DESC), leading to local code-execution-like impact wi...

PT-2025-2779 · Imagination Technologies · Graphics Ddk

Name of the Vulnerable Software and Affected Versions: Software affected versions not specified Description: The issue allows software installed and run as a non-privileged user to conduct improper GPU system calls, triggering use-after-free kernel exceptions. Recommendations: At the moment, ther...

CVE-2024-46973

Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions...

CVE-2024-46972

Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions...

CVE-2024-46972 GPU DDK - Security: Reference count overflow in pvr_sync_rollback_export_fence

Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions...

CVE-2024-46972

CVE-2024-46972 is an Imagination Technologies PowerVR-GPU driver issue. The vulnerability arises from a faulty GPU system call path that can be triggered by code running with normal user permissions, leading to a use-after-free in the kernel. The CVE is documented with a local-execution impact pr...

PT-2024-32310 · Imagination Technologies · Graphics Ddk

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue allows software installed and run as a non-privileged user to conduct improper GPU system calls, potentially triggering use-after-free kernel...

SUSE CVE-2024-38614

In the Linux kernel, the following vulnerability has been resolved: openrisc: traps: Don't send signals to kernel mode threads OpenRISC exception handling sends signals to user processes on floating point exceptions and trap instructions for debugging among others. There is a bug where the trap...

CVE-2021-22415

There is an Incorrect Calculation of Buffer Size Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause kernel exceptions with the code...

CVE-2021-22415

There is an Incorrect Calculation of Buffer Size Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause kernel exceptions with the code...

Code injection

There is an Incorrect Calculation of Buffer Size Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause kernel exceptions with the code...

CVE-2021-22415

CVE-2021-22415 concerns Huawei smartphone software (EMUI/Magic UI). The vulnerability is described as an incorrect calculation of buffer size vulnerability that can lead to kernel exceptions and a potential DoS. The available documents identify the affected platform (Huawei devices) and the root ...

CVE-2021-22415

There is an Incorrect Calculation of Buffer Size Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause kernel exceptions with the code...

CVE-2016-9588

arch/x86/kvm/vmx.c in the Linux kernel through 4.9 mismanages the BP and OF exceptions, which allows guest OS users to cause a denial of service guest OS crash by declining to handle an exception thrown by an L2 guest...

security flaw

Linux kernel before 2.6.16.5 does not properly handle uncanonical return addresses on Intel EM64T CPUs, which reports an exception in the SYSRET instead of the next instruction, which causes the kernel exception handler to run on the user stack with the wrong GS...