Samsung Mobile Devices Memory Corruption Vulnerability

Description

Samsung mobile devices using Mali GPU contain an incorrect implementation handling file descriptor in dpu driver. This incorrect implementation results in memory corruption, leading to kernel panic. This vulnerability was chained with CVE-2021-25337 and CVE-2021-25369.

Required Action

Apply updates per vendor instructions.

References

• https://security.samsungmobile.com/securityUpdate.smsb
• https://nvd.nist.gov/vuln/detail/CVE-2021-25370

Additional Information

Catalog Version

2025.01.24

Catalog Released

Jan. 24, 2025

Days Until Due

0 days

Last Updated

7 months, 2 weeks ago