Posted 1/17/2024, 3:32:06 PM
New GPU vulnerability leaks sensitive AI data across programs
- New "LeftoverLocals" vulnerability in GPUs from AMD, Apple, Qualcomm, Imagination leaks sensitive AI data from local memory
- Allows attackers to read leftover data in GPU memory across separate programs/users via malicious "listener" code
- Enables recovering info like model inputs/outputs/weights from AI and machine learning processes
- Proof-of-concept showed 5.5MB - 181MB of data leakage possible from AMD GPU running llama.cpp model
- Mitigations underway but some GPUs remain vulnerable pending fixes from vendors