Evils in the Sparse Texture Memory - Exploiting Kernel Vulnerabilities in GPU APIs
Offered By: Black Hat via YouTube
Course Description
Overview
Explore vulnerabilities in the Imagination Technologies' PowerVR GPU used in various Android devices during this 40-minute Black Hat conference talk. Discover several physical page UAF vulnerabilities caused by mishandled sparse texture memory management. Learn how malicious actors can manipulate arbitrary freed physical pages from both CPU and GPU sides using OpenGL and OpenCL. Understand the unique nature of these exploits, which primarily use OpenGL APIs and an extra mmap function, making them potentially harder to detect through static analysis. Gain insights into solutions for detecting these exploits and witness a demonstration of rooting a device. Presented by Xingyu Jin, Tony Mendez, and Richard Neal, this talk delves into the intricacies of kernel exploitation based on undefined behaviors of graphic APIs.
Syllabus
Evils in the Sparse Texture Memory: Exploit Kernel Based on Undefined Behaviors of Graphic APIs
Taught by
Black Hat
Related Courses
Heterogeneous Parallel ProgrammingUniversity of Illinois at Urbana-Champaign via Coursera GPU Architectures And Programming
Indian Institute of Technology, Kharagpur via Swayam Playing With Fire - Pyro SOP Solver, Houdini Tutorial
Escape Studios via YouTube Java on the GPU - Where Are We Now?
Devoxx via YouTube News from the Embedded Graphics Space
Linux Foundation via YouTube