CVE-2022-0536 is a vulnerability that affects the Intel Unified Shader Compiler (iusc), a tool used to compile graphics shaders for various Intel integrated GPUs. The flaw allows an attacker to execute arbitrary code on affected systems through the use of specially crafted shader files. The vulnerability has been rated with a CVSS score of 8.0, indicating a high severity level.
The vulnerability was discovered on January 25, 2022, by security researchers at Google Project Zero. Intel was notified of the issue and worked on developing a fix. On March 22, 2022, Intel released a security advisory acknowledging the vulnerability and providing a patch for it. The patch addresses the issue by adding bounds checking during shader compilation to prevent the execution of arbitrary code.
This vulnerability could potentially allow attackers to execute malicious code on affected systems and compromise sensitive data. As such, it is important for all users of affected Intel GPUs to ensure that they have applied the necessary updates to their systems to protect against this vulnerability.