PT-2023-18708 · Arm · Arm Android Gralloc Module
Published
2023-04-11
·
Updated
2023-04-21
·
CVE-2023-22808
CVSS v3.1
3.3
Low
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Arm Android Gralloc Module versions r24p0 through r41p0 before r42p0
Description
An issue was discovered in the Arm Android Gralloc Module, allowing a non-privileged user to read a small portion of the allocator process memory.
Recommendations
For versions r24p0 through r41p0 before r42p0, update to version r42p0 or later to resolve the issue.
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Arm Android Gralloc Module