CVE-2022-20122

The PowerVR GPU driver allows unprivileged apps to allocated pinned memory, unpin it which makes it available to be freed, and continue using the page in GPU calls. No privileges required and this results in kernel memory corruption.Product: AndroidVersions: Android SoCAndroid ID: A-232441339...

DEBIAN-CVE-2024-0109

NVIDIA CUDA Toolkit contains a vulnerability in command cuobjdump where a user may cause a crash by passing in a malformed ELF file. A successful exploit of this vulnerability may cause an out of bounds read in the unprivileged process memory which could lead to a limited denial of service...

PT-2024-15347 · Nvidia +1 · Nvidia Cuda Toolkit +1

Name of the Vulnerable Software and Affected Versions: NVIDIA CUDA Toolkit versions prior to 12.6 Description: The issue is related to a command cuobjdump in NVIDIA CUDA Toolkit, where passing a malformed ELF file can cause a crash. This can lead to an out of bounds read in the unprivileged proce...

PT-2024-26868 · Unknown · Marvin Test Hw.Exe

Name of the Vulnerable Software and Affected Versions: Marvin Test HW.exe versions prior to 5.0.5.0 Description: The issue allows unprivileged user-mode processes to arbitrarily map physical memory with read/write access via the MmMapIoSpace API, leading to a denial of service BSOD. The...

kernel: powerpc: incomplete Spectre-RSB mitigation leads to information exposure

A flaw was found in the way the Linux kernel implemented a software flush of the Count Cache indirect branch cache and Link Return Address Stack on the PowerPC platform. The flushing of these structures helps to prevent SpectreRSB like attacks which may leak information from one user process to...

Kernel: hw: cpu: L1 terminal fault (L1TF)

Modern operating systems implement virtualization of physical memory to efficiently use available system resources and provide inter-domain protection through access control and isolation. The L1TF issue was found in the way the x86 microprocessor designs have implemented speculative execution of...

hw: cpu: speculative store bypass

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions a commonly used performance optimization. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the...

hw: cpu: speculative execution bounds-check bypass

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant...