Imagination GPU Driver Vulnerabilities


This page contains summary details of security vulnerabilities reported on Imagination Technologies graphics drivers.

September 2023

TitleGPU – GPU OOB access to physical memory from mis-configured heap
ReferencePP-137204-X.2
Date Posted19th September 2023
Version(s) affectedDDK Releases up to and including 1.19
VulnerabilitySoftware installed and run as a non-privileged user may conduct improper GPU system calls to access out of bounds memory
ResolutionThe DDK kernel module has been updated to introduce protection to prevent misuse of heaps
TitleGPU – GPU OOB access to physical memory from mis-configured heap
ReferencePP-137205-X.3
Date Posted19th September 2023
Version(s) affectedDDK Releases up to and including 1.19
VulnerabilitySoftware installed and run as a non-privileged user may conduct improper GPU system calls to access out of bounds memory
ResolutionThe DDK kernel module has been updated to introduce protection to prevent misuse of heaps
TitleGPU – OOB access to kernel memory when creating a graphics buffer
ReferencePP-137207-X.5
Date Posted19th September 2023
Version(s) affectedDDK Releases 1.15 and later, up to and including 23.2
VulnerabilitySoftware installed and run as a non-privileged user may conduct improper GPU system calls to access out of bounds kernel memory
ResolutionThe DDK kernel module has been updated to introduce protection to prevent misuse when creating graphics buffers
TitleGPU – Access to GPU buffer memory after it has been freed
ReferencePP-137212-X.7
Date Posted19th September 2023
Version(s) affectedDDK Releases up to and including 23.2
VulnerabilitySoftware installed and run as a non-privileged user may conduct improper GPU system calls to access freed memory
ResolutionThe DDK kernel module has been updated to ensure some GPU buffer memory will not be reused after it is freed

October 2023

TitleGPU – GPU can R/W arbitrary freed physical pages due to PMR object reference count mismanagement in DevmemIntMapPages
ReferenceCVE-2023-35685, PP-137206-X.4, PP-137216-X.11
Date Posted2nd October 2023
Version(s) affectedDDK Releases up to and including 1.18
VulnerabilitySoftware installed and run as a non-privileged user may conduct improper GPU system calls to access freed memory from the GPU.
ResolutionThe DDK kernel module has been updated to correct reference counting for these objects to prevent the issue.
TitleGPU – GPU OOB access to physical memory from mis-configured reservation
ReferencePP-137214-X.1
Date Posted2nd October 2023
Version(s) affectedDDK Releases up to and including 23.2
VulnerabilitySoftware installed and run as a non-privileged user may conduct improper GPU system calls to access OOB memory from the GPU.
ResolutionThe DDK kernel module has been updated to introduce protection to reject incorrect user-mode parameters given to GPU system calls.
TitleGPU – Driver can leak kernel information through IOCTL calls
ReferencePP-137214-X.9
Date Posted2nd October 2023
Version(s) affectedDDK Releases up to and including 23.2
VulnerabilitySoftware installed and run as a non-privileged user may conduct improper GPU system calls to trigger a leak of kernel data or trigger a kernel exception.
ResolutionThe DDK kernel module has been updated to introduce protection to prevent misuse of the IOCTL interface.
TitleGPU – Reservation object UAF in DevmemIntUnmapPMR
Reference(s)CVE-2023-21165
PP-137217-X.12
PP-137443-X.22
Date Posted12th October 2023
Version(s) affectedDDK Releases up to and including 23.2
VulnerabilitySoftware installed and run as a non-privileged user may conduct improper GPU system calls to trigger a UAF kernel exception.
ResolutionThe DDK kernel module has been updated to introduce protection to prevent this use-after-free issue.

January 2024

TitleGPU – Leftover locals – local memory data leak
Reference(s)CVE-2023-4969
Date Posted16th January 2024
Version(s) affectedDDK Releases up to and including 23.2
VulnerabilitySoftware installed and run as a non-privileged user may execute improper GPU compute kernels to leak uninitialised local data from the GPUs internal local memory.
ResolutionThe user-mode drivers and firmware have been updated to introduce protection to prevent this misuse of local memory.

February 2024

TitleGPU – Re-use of MMU PT memory can allow GPU shader to R/W OOB to freed memory in rare situations
Our Reference(s)PP-137442-X.21
Originator ReferenceNone
Date Posted22nd February 2024
Version(s) affectedDDK Releases up to and including 23.3
VulnerabilitySoftware installed and run as a non-privileged user may conduct GPU system calls to read and write freed physical memory from the GPU.
ResolutionThe DDK kernel module has been updated to prevent situations from arising where this vulnerability is present.
TitleGPU can read and write freed physical memory pages after a virtual range is destroyed
Our Reference(s)CVE-2024-23711, PP-148694
Originator ReferenceNone
Date Posted22nd February 2024
Version(s) affectedDDK Releases up to and including 23.3
VulnerabilitySoftware installed and run as a non-privileged user may conduct GPU system calls to read and write freed physical memory from the GPU.
ResolutionThe DDK kernel module has been updated to ensure GPU virtual mappings are removed when a virtual range is destroyed.
TitleGPU – Uninitialised physical memory causes arbitrary content leak to user-mode on UMA systems
Our Reference(s)PP-159144
Originator ReferenceC-305594806
Date Posted22nd February 2024
Version(s) affectedDDK Releases up to and including 23.3
VulnerabilitySoftware installed and run as a non-privileged user may conduct GPU system calls to read kernel and other sensitive information from GPU buffers.
ResolutionThe DDK kernel module has been updated to ensure the previous content of memory pages used in GPU buffers are cleared before re-using them in a different context.

If you have any questions on these vulnerabilities, please reach out to your Imagination Technologies support representative.