PT-2023-32096 · Arm · Arm Bifrost Gpu Kernel Driver+2
Published
2023-12-01
·
Updated
2023-12-18
·
CVE-2023-5427
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Arm Ltd Bifrost GPU Kernel Driver versions r44p0 through r45p0
Arm Ltd Valhall GPU Kernel Driver versions r44p0 through r45p0
Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver versions r44p0 through r45p0
Description
A local non-privileged user can make improper GPU processing operations to gain access to already freed memory. This issue allows for a Use After Free vulnerability, which can be exploited to access memory that has already been freed.
Recommendations
For Arm Ltd Bifrost GPU Kernel Driver versions r44p0 through r45p0, update to a version outside of this range to resolve the issue.
For Arm Ltd Valhall GPU Kernel Driver versions r44p0 through r45p0, update to a version outside of this range to resolve the issue.
For Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver versions r44p0 through r45p0, update to a version outside of this range to resolve the issue.
Exploit
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Arm 5Th Gen Gpu Architecture Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver