Description

The PowerVR GPU kernel driver maintains an "Information Page" used by its cache subsystem. This page can only be written by the GPU driver itself, but prior to DDK 1.18 however, a user-space program could write arbitrary data to the page, leading to memory corruption issues.Product: AndroidVersions: Android SoCAndroid ID: A-259967780

Related CPE's

o

google

android

-

Vulnerable

References

https://source.android.com/security/bulletin/2023-01-01

Vendor Advisory

https://source.android.com/security/bulletin/2023-01-01

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-787

134c704f-9b21-4f2e-91b3-4a467353bcc0

Secondary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

5.5 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-01-26T20:15:26.480Z

3 years ago

Last modified

2025-04-02T13:15:43.040Z

11 months ago