PT-2023-12033 · Imagination Technologies · Powervr Kernel Driver

Published

2023-07-12

Updated

2023-07-20

CVE-2021-0948

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions PowerVR kernel driver (affected versions not specified)

Description The issue concerns the PVRSRVBridgeGetMultiCoreInfo ioctl in the PowerVR kernel driver, which can return uninitialized kernel memory to user space. This memory may contain sensitive information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use of Uninitialized Resource

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-908

Related Identifiers

CVE-2021-0948

Affected Products

Powervr Kernel Driver

PT-2023-12033 · Imagination Technologies · Powervr Kernel Driver

CVE-2021-0948

Weakness Enumeration

Related Identifiers

Affected Products

References · 3