CVE-2023-33107
published 2023-12-05CVE-2023-33107: Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
PriorityP182high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
KEVITWEXPLOIT
CISA Known Exploited Vulnerabilitydue 2023-12-26
Exploited in the wild
EPSS
0.89%
54.9th percentile
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
Affected
243 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — | |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
| qualcomm_inc | snapdragon | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability is triggered via an IOCTL call in the Graphics Linux kernel driver when assigning shared virtual memory regions — monitor for anomalous IOCTL calls to Qualcomm GPU/display driver nodes (e.g., /dev/kgsl-3d0 or similar) ↗
- →Patch reference commit for kernel msm-4.19 branch available at the linked CodeLinaro repository — diff can be used to identify the vulnerable code path and build detection logic or YARA rules targeting the unpatched binary ↗
- →Classified as an integer overflow leading to memory corruption — look for exploitation patterns consistent with integer overflow in kernel graphics driver (e.g., heap corruption, unexpected kernel crashes in GPU driver context) ↗
- →Android Security Bulletin component is 'Display' — focus detection on display/GPU subsystem driver interactions on Android devices running affected Qualcomm chipsets ↗
- ·Vulnerability affects multiple Qualcomm chipsets; specific affected chipset models are not enumerated in these sources — consult Qualcomm Security Advisory QC-CR#3611296 for the full affected product list ↗
- ·Patching status varies by vendor/OEM — devices may remain vulnerable even after Android Security Bulletin publication if OEM patches have not been applied ↗
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vulncheck8.4HIGH
cisa7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-wg3g-ggh3-7wgp: Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call
ghsa_unreviewed·2023-12-05
CVE-2023-33107 [HIGH] CWE-190 GHSA-wg3g-ggh3-7wgp: Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call
Memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
VulnCheck
Qualcomm Multiple Chipsets Integer Overflow Vulnerability
vulncheck·2023·CVSS 8.4
CVE-2023-33107 [HIGH] CWE-190 Qualcomm Multiple Chipsets Integer Overflow Vulnerability
Qualcomm Multiple Chipsets Integer Overflow Vulnerability
Multiple Qualcomm chipsets contain an integer overflow vulnerability due to memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
Affected: Qualcomm Multiple Chipsets
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit; https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2023-bulletin.html; https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json; https://ti.qianxin.com/uploads/2024/02/02/dcc93e586f9028c68e7ab34c3326ff31
Project0
Project Zero RCA: CVE-2023-33107: Qualcomm Adreno GPU KGSL_IOCTL_GPUOBJ_IMPORT integer overflow
project_zero·CVSS 8.4
CVE-2023-33107 [HIGH] Project Zero RCA: CVE-2023-33107: Qualcomm Adreno GPU KGSL_IOCTL_GPUOBJ_IMPORT integer overflow
# CVE-2023-33107: Qualcomm Adreno GPU KGSL_IOCTL_GPUOBJ_IMPORT integer overflow
*Benoît Sevens and Jann Horn*
## The Basics
**Disclosure or Patch Date:** October 2, 2023
**Product:** Qualcomm Adreno GPU
**Advisory:** https://docs.qualcomm.com/product/publicresources/securitybulletin/october-2023-bulletin.html
**Affected Versions:** N/A
**First Patched Version:** N/A
**Issue/Bug Report:** N/A
**Patch CL:** https://git.codelinaro.org/clo/la/kernel/msm-4.19/-/commit/d66b799c804083ea5226cfffac6d6c4e7ad4968b
**Bug-Introducing CL:** N/A
**Reporter(s):** Jann Horn of Google's Project Zero and Benoît Sevens of Google's Threat Analysis Group
## The Code
**Proof-of-concept:** Not public
**Exploit sample:** Not public
**Did you have access to the exploit sample when doing the analysis?*
CISA
Qualcomm Multiple Chipsets Integer Overflow Vulnerability
cisa·2023-12-05·CVSS 7.8
CVE-2023-33107 [HIGH] CWE-190 Qualcomm Multiple Chipsets Integer Overflow Vulnerability
Vulnerability: Qualcomm Multiple Chipsets Integer Overflow Vulnerability
Affected: Qualcomm Multiple Chipsets
Multiple Qualcomm chipsets contain an integer overflow vulnerability due to memory corruption in Graphics Linux while assigning shared virtual memory region during IOCTL call.
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Notes: This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://git.codelinaro.org/clo/la/kernel/msm-4.19/-/commit/d66b799c804083ea5226cfffac6d6c4e7ad4968b; https://nvd.nist.gov
Android
CVE-2023-33107: Display
vendor_android·2023-12-01·CVSS 8.4
CVE-2023-33107 [HIGH] CVE-2023-33107: Display
Android Security Bulletin 2023-12-01
CVE: CVE-2023-33107
Severity: HIGH
Component: Display
References: A-299649795
QC-CR#3611296
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-12-05
Published
2023-12-05
Added to CISA KEV
Exploited in the wild