CVE-2024-46971

CVE-2024-46971: GPU DDK - UAF of memory in PMRUnlockSysPhysAddressesLocalMem for on-demand PMRs on PCI (LMA) systems

Vendor Imagination Technologies
Product Graphics DDK
Weakness CWE-416
Published December 13, 2024
Last update December 16, 2024

CVSS base score

What the vulnerability does

01Description

Software installed and run as a non-privileged user may conduct GPU system calls to read and write freed physical memory from the GPU.

Key dates

02Disclosure timeline

December 13, 2024 CVE published
December 16, 2024 Record updated