Qualcomm Adreno GPU MSM Driver Perfcounter Query Heap Overflow

Posted by deepcore on March 1, 2016 – 3:41 pm

The Adreno GPU driver for the MSM Linux kernel contains a heap overflow in the IOCTL_KGSL_PERFCOUNTER_QUERY ioctl command. The bug results from an incorrect conversion to a signed type when calculating the minimum count value for the query option. This results in a negative integer being used to calculate the size of a buffer, which can result in an integer overflow and a small sized allocation on 32-bit systems.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Apple Security Advisory 2016-02-25-1 Fing 3.3.0 Persistent Mail Encoding »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Qualcomm Adreno GPU MSM Driver Perfcounter Query Heap Overflow

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL