Imagination Technologies GPU Driver Out-of-Bounds Read and Write Vulnerability in DDK Releases Prior to 24.3

A vulnerability exists in the GPU Device Driver Development Kit (DDK) that allows kernel software running inside a Guest Virtual Machine (VM) to exploit memory shared with the GPU Firmware. This exploitation can lead to unauthorized reading and writing of data outside the Guest's virtualized GPU memory. The issue arises from improper handling of memory access, particularly in DDK releases up to and including 24.2 RTM2.

Impact

Exploitation of this vulnerability can cause arbitrary read and write operations to physical memory, including memory pages allocated to the kernel and other drivers, potentially leading to unauthorized information disclosure or manipulation of kernel behavior.

Reproduction

The vulnerability can be reproduced by executing GPU compute kernels from within a Guest VM that take advantage of the improper memory access management in the GPU driver. This can be done by sending commands that overwrite or read data from the shared memory area with the GPU firmware, targeting the specific memory access flaws introduced by the driver.

Remediation

Users can update to the latest version of the Imagination Technologies GPU DDK, which has been patched to prevent the out-of-bounds read and write vulnerabilities. Instructions for updating the DDK can be found on the Imagination Technologies website.