Description
An attacker could cooperatively pass data from one secure GPU process to another secure GPU process through shared secure memory allocations in the kernel module. Additionally, an attacker could disrupt the operation of another secure GPU process leading to image corruption / GPU hardware recovery. Sharing secure memory allocations among various GPU secure processes allows an attacker to corrupt shared resource affecting other users.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected products
- Imagination Technologies / Graphics DDK1.18 RTM – 1.18 RTM
- Imagination Technologies / Graphics DDK23.2 RTM – 23.2 RTM
- Imagination Technologies / Graphics DDK24.2 RTM – 24.2 RTM
- Imagination Technologies / Graphics DDK25.1 RTM – 25.3 RTM
- Imagination Technologies / Graphics DDK26.1 RTM – 26.1 RTM
- Imagination Technologies / Graphics DDK26.2 RTM – 26.2 RTM