CVE-2019-5049

Name of the Vulnerable Software and Affected Versions AMD ATIDXX64.DLL driver versions 25.20.15031.5004 and 25.20.15031.9002

Description A memory corruption issue exists due to an out-of-bounds memory write caused by a specially crafted pixel shader. An attacker can trigger this issue by providing a specially crafted shader file. This can be exploited from a VMware guest, affecting the VMware host.

Recommendations For version 25.20.15031.5004, consider disabling the use of specially crafted pixel shaders until a patch is available. For version 25.20.15031.9002, restrict the execution of shader files from untrusted sources to minimize the risk of exploitation.