CVE-2017-5538

Name of the Vulnerable Software and Affected Versions Samsung Mobile GPU driver versions with M(6.0) and N(7.0) software and Exynos AP chipsets

Description The issue is related to an out-of-bounds read in the kbase dispatch function, located in the arm/t7xx/r5p0/mali kbase core linux.c file of the GPU driver. This could allow attackers to have an unspecified impact via unknown vectors. The vulnerability is associated with a buffer overflow error in memory.

Recommendations For Samsung Mobile GPU driver versions with M(6.0) and N(7.0) software and Exynos AP chipsets, consider disabling the kbase dispatch function as a temporary workaround until a patch is available. Restrict access to the vulnerable GPU driver module to minimize the risk of exploitation.