Imagination Technologies GPU Driver Ptrace Vulnerability Allowing Writes to Read-Only Memory

A vulnerability exists in Imagination Technologies GPU drivers, specifically in the GPU DDK, all versions up to and including 24.3. This vulnerability allows software running as a non-privileged user to use ptrace system calls to write data to GPU memory that is normally read-only. The issue arises from improper validation in the GPU driver, which can be exploited to disrupt GPU operations and potentially cause system instability.

Impact

Exploitation of this vulnerability can lead to unauthorized writes in GPU memory, specifically to areas designated as read-only. This can corrupt data and disrupt normal GPU operations, potentially causing system crashes or instability.

Reproduction

The vulnerability can be reproduced by running a non-privileged application that uses ptrace to manipulate GPU memory. This can be done by sending ptrace requests that target read-only memory areas, causing the GPU to overwrite them with arbitrary data. The exploitation can be verified by checking for changes in the GPU memory or by observing disruptions in GPU performance, such as freezes or crashes.

Remediation

Users can update to the latest version of the Imagination Technologies GPU DDK, which includes patches to prevent ptrace from writing to read-only memory areas. Instructions for updating the GPU DDK can be found on the Imagination Technologies website.