The Imagination Technologies driver for Chrome OS before R74-11895.B, R75 before R75-12105.B, and R76 before R76-12208.0.0 allows attackers to trigger an Integer Overflow and gain privileges via a malicious application. This occurs because of intentional access for the GPU process to /dev/dri/card1 and the PowerVR ioctl handler, as demonstrated by PVRSRVBridgeSyncPrimOpCreate.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://bugs.chromium.org/p/chromium/issues/detail?id=960106 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-10-01T11:07:51
Updated: 2024-08-05T01:17:39.567Z
Reserved: 2019-09-19T00:00:00
Link: CVE-2019-16508
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-10-01T12:15:10.967
Modified: 2024-11-21T04:30:43.603
Link: CVE-2019-16508
Redhat
No data.