CVE-2024-47892

CVE-2024-47892: GPU DDK - UAF of kernel memory in PMRUnlockPhysAddressesOSMem for on-demand non-4KB PMRs in system memory (UMA)

Vendor Imagination Technologies
Product Graphics DDK
Weakness CWE-416
Published December 13, 2024
Last update December 16, 2024

CVSS base score

What the vulnerability does

01Description

Software installed and run as a non-privileged user may conduct GPU system calls to read and write freed physical memory from the GPU.

Key dates

02Disclosure timeline

December 13, 2024 CVE published
December 16, 2024 Record updated