CVE-2023-5643

Name of the Vulnerable Software and Affected Versions Arm Ltd Bifrost GPU Kernel Driver versions r41p0 through r45p0 Arm Ltd Valhall GPU Kernel Driver versions r41p0 through r45p0 Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver versions r41p0 through r45p0

Description The issue allows a local non-privileged user to make improper GPU memory processing operations. Depending on the configuration of the Mali GPU Kernel Driver, and if the system’s memory is carefully prepared by the user, then this in turn could write to memory outside of buffer bounds.

Recommendations For Arm Ltd Bifrost GPU Kernel Driver versions r41p0 through r45p0, update to a version outside of the affected range. For Arm Ltd Valhall GPU Kernel Driver versions r41p0 through r45p0, update to a version outside of the affected range. For Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver versions r41p0 through r45p0, update to a version outside of the affected range. As a temporary workaround, consider restricting access to the GPU memory processing operations until a patch is available.