103 matches found
CVE-2024-52939
CVE-2024-52939 is a vulnerability reported in the Imagination Technologies PowerVR-GPU stack where kernel software running inside a Guest VM can post improper commands to the GPU firmware, triggering a write of data outside the Guest VM’s virtualised GPU memory. The issue is described as a local ...
CVE-2024-47896
CVE-2024-47896 concerns Imagination Technologies PowerVR-GPU drivers. According to the provided sources, a kernel component running inside a guest VM can access memory shared with the GPU Firmware and write data outside the Guest VM’s virtualized GPU memory, indicating a local vulnerability with ...
Imagination GPU Driver 安全漏洞
Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in the Imagination GPU Driver that originates from kernel software installed and running in the Guest VM that may exploit memory shared with the GPU firmware to write data outside of the Guest's...
Imagination GPU Driver 安全漏洞
The Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in the Imagination GPU Driver that originates from kernel software installed and running in the Guest VM that may leverage memory shared with the GPU firmware to write data outside of the Guest's...
PT-2025-7435 · Kernel · Kernel
Name of the Vulnerable Software and Affected Versions: Kernel software affected versions not specified Description: The issue concerns kernel software installed and running inside a Guest VM, which may post improper commands to the GPU Firmware. This can trigger a write of data outside the Guest'...
CVE-2024-52938 GPU DDK - rgxfw_pm_add_freelist_for_reconstruction OOB write
Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to subvert reconstruction activities to trigger a write of data outside the Guest's virtualised GPU memory...
CVE-2024-47895
Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to read data outside the Guest's virtualised GPU memory...
CVE-2024-52937
CVE-2024-52937 describes a vulnerability where kernel software running inside a guest VM could exploit memory shared with the GPU firmware to write data outside the guest’s virtualized GPU memory. The issue is associated with Imagination Technologies’ PowerVR-GPU components and is documented acro...
CVE-2024-47894 GPU DDK - Out of bounds read into fwlog due to unchecked loop bounds
Kernel software installed and running inside a Guest VM may post improper commands to the GPU Firmware to read data outside the Guest's virtualised GPU memory...
Imagination GPU Driver 安全漏洞
Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in the Imagination GPU Driver that originates from kernel software installed and running within a guest virtual machine that may send incorrect commands to the GPU firmware to corrupt rebuild activity,...
Imagination GPU Driver 安全漏洞
The Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in the Imagination GPU Driver that originates from kernel software installed and running in a guest virtual machine that may utilize memory shared with the GPU firmware to write data outside of the...
PT-2025-2940 · Kernel · Kernel
Name of the Vulnerable Software and Affected Versions: Kernel software affected versions not specified Description: The issue allows kernel software installed and running inside a Guest VM to exploit memory shared with the GPU Firmware, enabling it to write data outside the Guest's virtualised GP...
Imagination GPU Driver 安全漏洞
Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in the Imagination GPU Driver that originates from kernel software installed and running in a guest virtual machine that may issue incorrect commands to the GPU firmware to write data outside of the memo...
Imagination GPU Driver 安全漏洞
The Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in the Imagination GPU Driver that originates from kernel software installed and running in a guest virtual machine that may utilize memory shared with the GPU firmware to write data outside of the...
PT-2025-3583 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the Linux kernel's ASoC: SOF: Intel: hda-dai component, where the link DMA should not be released on a stop trigger, as a stream re-start might occur without closing...
CVE-2024-56573 efi/libstub: Free correct pointer on failure
In the Linux kernel, the following vulnerability has been resolved: efi/libstub: Free correct pointer on failure cmdlineptr is an out parameter, which is not allocated by the function itself, and likely points into the caller's stack. cmdline refers to the pool allocation that should be freed whe...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-47720)
"The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47720 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for...
CVE-2022-48969 xen-netfront: Fix NULL sring after live migration
In the Linux kernel, the following vulnerability has been resolved: xen-netfront: Fix NULL sring after live migration A NAPI is setup for each network sring to poll data to kernel The sring with source host is destroyed before live migration and new sring with target host is setup after live...
RHSA-2021:4774 Red Hat Security Advisory: kernel security update
Bulletin has no description...
CVE-2024-26716 usb: core: Prevent null pointer dereference in update_port_device_state
In the Linux kernel, the following vulnerability has been resolved: usb: core: Prevent null pointer dereference in updateportdevicestate Currently, the function updateportdevicestate gets the usbhub from udev-parent by calling usbhubtostructhub. However, in case the actconfig or the maxchild is 0...