Imagination Technologies GPU Driver Kernel Heap Corruption Vulnerability

A vulnerability exists in the Imagination Technologies GPU driver that allows software running as a non-privileged user to make improper GPU system calls. These incorrect calls can corrupt kernel heap memory by writing data outside the intended boundaries, potentially leading to platform instability.

Impact

Exploitation of this vulnerability causes kernel heap memory corruption, which can disrupt system stability and operations.

Reproduction

The vulnerability can be reproduced by running software that makes improper GPU system calls, either through a graphics application or a custom program that interacts with the GPU driver. This can be done in a development environment or as part of a software testing process.

Remediation

Users can update to the latest version of the Imagination Technologies GPU driver, which includes a patch for this vulnerability. Instructions for updating the driver can be found on the Imagination Technologies website or through the Imagination Technologies support representative.