Technology News
  • Home
  • Laptops
  • Laptops News
  • LeftoverLocals GPU Flaw Exposes AI Data in Devices Equipped with Apple, AMD, and Qualcomm Hardware

LeftoverLocals GPU Flaw Exposes AI Data in Devices Equipped with Apple, AMD, and Qualcomm Hardware

LeftoverLocals does not impact GPUs from Arm, Nvidia, and Intel, according to the security researchers who uncovered the flaw,.

Written by David Delima, Edited by Siddharth Suvarna | Updated: 18 January 2024 15:42 IST
LeftoverLocals GPU Flaw Exposes AI Data in Devices Equipped with Apple, AMD, and Qualcomm Hardware

Photo Credit: Unsplash/ Joseph Greve

GPUs from AMD and Apple are affected by the LeftoverLocals flaw

Highlights
  • LeftoverLocals affects GPUs from four major manufacturers
  • The flaw is said to impact some iPhone, iPad, and MacBook models
  • Manufacturers have issued patches for LeftooverLocals for select devices
Advertisement

A security flaw affecting GPUs from four hardware manufacturers that exposed artificial intelligence (AI) data was unearthed by security researchers. The issue impacts several devices equipped with GPUs from these firms, including some iPhone, iPad, and Mac computers. Hackers can exfiltrate personal information being used in AI operations on the local memory of affected devices — including large language models (LLMs) used by services like Google, Meta, ChatGPT maker OpenAI, and Microsoft using a few lines of code, according to researchers.

Researchers at Trail of Bits uncovered a security flaw affecting GPUs from AMD, Apple, Imagination, and Qualcomm that has been dubbed LeftoverLocals. This vulnerability is related to the affected device's GPU and allows hackers to access information via local memory created by another process. Arm, Intel, and Nvidia GPUs are reportedly unaffected by the same security flaw.

In a detailed disclosure published earlier this week, the researchers highlight how the security flaw affects LLMs and machine learning (ML) models that are run on impacted devices. They were able to build a proof of concept (PoC) of the attack that allowed them to access information from another user's LLM session that was being run in a different process.

leftoverlocals poc trailofbits leftoverlocals

A demonstration of an attacker listening in on an interactive LLM chat session
Photo Credit: Screenshot/ Trail of Bits

 

By running a few lines of code, a hacker can use the LeftoverLocals security flaw to reconstruct the LLM response in an interactive session "with high precision", according to the researchers. The flaw was discovered by Tyler Sorensen and is being tracked by CVE-2023-4969.

The researchers state that they reached out to Apple and received a response on January 13, while the company has patched some devices with the A17 Pro — that powers the iPhone 15 Pro and 15 Pro Max — and M3 chip series, but other devices have not been patched, such as the M2-powered MacBook Air.

Meanwhile, AMD has stated is still exploring ways to mitigate the security vulnerability and Qualcomm has issued a patch with its v2.07 firmware that fixes the flaw on some devices, while others could still remain impacted. Affected Imagination GPUs were patched last month as part of the recent DDK 23.3 release, according to the researchers.

Is the Samsung Galaxy Z Flip 5 the best foldable phone you can buy in India right now? We discuss the company's new clamshell-style foldable handset on the latest episode of Orbital, the Gadgets 360 podcast. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.
Affiliate links may be automatically generated - see our ethics statement for details.
Apple MacBook Air (M2, 2022) Laptop

Apple MacBook Air (M2, 2022) Laptop

  • REVIEW
  • KEY SPECS
  • NEWS
  • Design
  • Display
  • Software
  • Performance
  • Battery Life
  • Value for Money
  • Good
  • Stylish and functional design
  • Very good battery life, MagSafe charging
  • Crisp and bright display
  • Great performance, excellent keyboard
  • Speakers sound good
  • Bad
  • Expensive
Read detailed Apple MacBook Air (M2, 2022) review
Display size 13.60-inch
Touchscreen No
Processor Apple M2
RAM 8GB
OS macOS
Hard disk No
SSD 512GB
Apple iPhone 15 Pro Max

Apple iPhone 15 Pro Max

  • REVIEW
  • KEY SPECS
  • NEWS
  • Design
  • Display
  • Software
  • Performance
  • Battery Life
  • Camera
  • Value for Money
  • Good
  • Excellent display
  • USB Type-C
  • AAA gaming
  • Excellent all-round performance
  • Good primary and telephoto camera
  • Customisable Action Button
  • Bad
  • Gets hot quickly when stressed
  • Slow wired charging
  • Expensive
Read detailed Apple iPhone 15 Pro Max review
Display 6.70-inch
Processor Apple A17 Pro
Front Camera 12-megapixel
Rear Camera 48-megapixel + 12-megapixel + 12-megapixel
RAM 8GB
Storage 256GB, 512GB, 1TB
OS iOS 17
Resolution 1290x2796 pixels
Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: LeftoverLocals, GPUs, Security flaws, Vulnerabilities, Apple, AMD, Qualcomm, Imagination, AI, Artificial Intelligence
David Delima
David Delima
As a writer on technology with Gadgets 360, David Delima is interested in open-source technology, cybersecurity, consumer privacy, and loves to read and write about how the Internet works. David can be contacted via email at DavidD@ndtv.com, on Twitter at @DxDavey, and Mastodon at mstdn.social/@delima. More
Coinbase Crypto Exchange, US SEC Lock Horns in US Court Over Digital Assets as Securities
Google CEO Sundar Pichai Tells Employees to Expect More Job Cuts This Year: Report
LeftoverLocals GPU Flaw Exposes AI Data in Devices Equipped with Apple, AMD, and Qualcomm Hardware
Comment
Share on Facebook Gadgets360 Twitter Share Tweet Snapchat Share Reddit Comment google-newsGoogle News
 
 

Advertisement

Featured
Follow Us
Latest Videos
More Videos
Tech News in Hindi
More Technology News in Hindi

Advertisement

Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. WhatsApp Says It Will Exit India If Asked to Break Encryption: Report
  2. Google Pixel 8a AI Features, Software Support Details Leaked
  3. Oppo Find X7 Ultra Review
  4. Vivo X100 Ultra, Vivo S19 Series Certified Ahead of China Debut
  5. Top OTT releases this week: Laapataa Ladies, Dil Dosti Dilemma and More
  6. HMD to Bring Self-Branded Smartphone to India; More Details on April 29
  7. Samsung Galaxy S24 FE Spotted Online With Moniker and Model Numbers
  8. Redmi Note 13 Pro+ 5G World Champions Edition Coming to India on This Date
#Latest Stories
  1. Apple ID Account Bug Locks Some Users Out of Accounts, Forces Password Reset
  2. Google Pixel 8a Video Showing AI Features Leaks; Promotional Images Indicate 7-Year Software Support
  3. Vivo X100 Ultra, Vivo S19 and Vivo S19 Pro Bag 3C Certification Ahead of Anticipated Launch in China
  4. Apple Renews Talks With OpenAI for iPhone Generative AI Features
  5. Samsung Galaxy Z Fold 6 Ultra to Launch Just in South Korea; Galaxy Watch Ultra in Works: Report
  6. WhatsApp Goes: Platform Reportedly Warns It Will Exit India If Asked to Break End-to-End Encryption
  7. Redmi Note 13 Pro+ 5G World Champions Edition Design Teased; to Launch in India on April 30
  8. Samsung Galaxy S24 FE Moniker and Model Numbers Reportedly Spotted Online
  9. Google Meet Introduces ‘Switch Here’ Feature That Lets Users Switch Devices Without Leaving a Call
  10. HMD's Self-Branded Smartphone to Launch in India; Details to Be Revealed on April 29
Gadgets 360 is available in
Follow Us
Download Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
Trending Products »
Latest Tech News »