CVE-2022-22706

Name of the Vulnerable Software and Affected Versions Arm Mali GPU Kernel Driver versions r26p0 through r31p0 Arm Mali GPU Kernel Driver versions r0p0 through r35p0 Arm Mali GPU Kernel Driver versions r19p0 through r35p0

Description The Arm Mali GPU Kernel Driver has a vulnerability related to insufficient access control, allowing a non-privileged user to gain write access to read-only memory pages. This issue affects the Midgard, Bifrost, and Valhall architectures. The vulnerability can be exploited to elevate privileges. According to reports, the time it takes to fix and integrate patches for such vulnerabilities can be significant, making known vulnerabilities as effective as zero-day exploits for attackers.

Recommendations For Arm Mali GPU Kernel Driver versions r26p0 through r31p0, update to a version that includes the fix for this vulnerability. For Arm Mali GPU Kernel Driver versions r0p0 through r35p0, update to a version that includes the fix for this vulnerability. For Arm Mali GPU Kernel Driver versions r19p0 through r35p0, update to a version that includes the fix for this vulnerability. As a temporary workaround, consider restricting access to the vulnerable driver until a patch is available.