Privilege Escalation via KGSL_MEMFLAGS_GPUREADONLY Flag Mishandling in Qualcomm MSM Graphics Driver

Privilege Escalation via KGSL_MEMFLAGS_GPUREADONLY Flag Mishandling in Qualcomm MSM Graphics Driver

CVE-2016-2067 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

drivers/gpu/msm/kgsl.c in the MSM graphics driver (aka GPU driver) for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, mishandles the KGSL_MEMFLAGS_GPUREADONLY flag, which allows attackers to gain privileges by leveraging accidental read-write mappings, aka Qualcomm internal bug CR988993.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.