Imagination Technologies GPU Driver Kernel Heap Corruption Vulnerability

A vulnerability exists in the Imagination Technologies GPU driver that allows software running as a non-privileged user to make improper GPU system calls. These erroneous calls can lead to corruption of the kernel heap memory by writing data outside the bounds of the allocated memory. This vulnerability affects several DDK releases up to and including 24.3.

Impact

Exploitation of this vulnerability causes kernel heap corruption, which can lead to various issues such as system instability, crashes, or the introduction of security vulnerabilities through memory corruption.

Reproduction

The vulnerability can be reproduced by running software as a non-privileged user that makes improper GPU system calls. This can be done by creating a program that interacts with the GPU driver and sends commands that overwrite kernel memory. The specific conditions for triggering this vulnerability involve manipulating the GPU's memory management features to access and corrupt freed or reserved memory.

Remediation

The DDK kernel module has been updated to prevent the identified scenarios that lead to heap corruption. Users should apply this update to the GPU driver to address the vulnerability.