CVE-2022-38181

Name of the Vulnerable Software and Affected Versions Arm Mali GPU kernel driver versions Bifrost r0p0 through r39p0 Arm Mali GPU kernel driver versions Valhall r19p0 through r39p0 Arm Mali GPU kernel driver versions Midgard r4p0 through r32p0

Description The issue is related to the mishandling of GPU memory operations, allowing unprivileged users to access freed memory. This can lead to a denial of service. The estimated number of potentially affected devices is not provided. There is no information about real-world incidents where this issue was exploited. The vulnerability is related to the use of memory after it has been freed, which can be exploited by a remote attacker.

Recommendations For versions Bifrost r0p0 through r39p0, update to a version that properly handles GPU memory operations to prevent access to freed memory. For versions Valhall r19p0 through r39p0, update to a version that properly handles GPU memory operations to prevent access to freed memory. For versions Midgard r4p0 through r32p0, update to a version that properly handles GPU memory operations to prevent access to freed memory. As a temporary workaround, consider restricting access to the GPU kernel driver to minimize the risk of exploitation.