An gano wani rauni (CVE-915-2022) a cikin direban Intel GPU (i4139) wanda zai iya haifar da ɓarnawar ƙwaƙwalwar ajiya ko ɗigon bayanai daga ƙwaƙwalwar kernel. Batun ya kasance tun daga Linux 5.4 kwaya kuma yana shafar 12 Gen Intel hadedde da GPUs masu hankali, gami da Tiger Lake, Lake Rocket, Alder Lake, DG1, Raptor Lake, DG2, Arctic Sound, da Iyalan Meteor Lake.
Matsalar ta haifar da kwaro mai ma'ana wanda ke sa direban bidiyo yayi kuskuren cire TLBs daga gefen GPU akan wasu kayan masarufi. A wasu lokuta, sake saitin TLB bai faru ba kwata-kwata. Rashin kuskure na masu buffer TLB na iya haifar da yiwuwar tsari ta amfani da GPU don samun damar shafukan ƙwaƙwalwar ajiyar jiki waɗanda ba su cikin wannan tsari, wanda za a iya amfani da shi don karanta bayanan wasu mutane ko lalata ƙwaƙwalwar ajiya a cikin tsari na waje. Har yanzu ba a tantance ko za a iya yin amfani da raunin da ya faru ba don lalata ƙwaƙwalwar ajiya a adiresoshin da ake so.
source: budenet.ru