PT-2024-15360 · Arm · Arm Valhall Gpu Firmware+1
Published
2024-07-01
·
Updated
2024-09-24
·
CVE-2024-0153
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Arm Ltd Valhall GPU Firmware versions r29p0 through r46p0
Arm Ltd Arm 5th Gen GPU Architecture Firmware versions r41p0 through r46p0
Description
The issue is related to an Improper Restriction of Operations within the Bounds of a Memory Buffer, allowing a local non-privileged user to make improper GPU processing operations to access a limited amount outside of buffer bounds. If the operations are carefully prepared, this could give them access to all system memory.
Recommendations
For Arm Ltd Valhall GPU Firmware versions r29p0 through r46p0, update to a version outside of this range to mitigate the risk.
For Arm Ltd Arm 5th Gen GPU Architecture Firmware versions r41p0 through r46p0, update to a version outside of this range to mitigate the risk.
As a temporary workaround, consider restricting access to sensitive system memory until a patch is available.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Arm 5Th Gen Gpu Architecture Firmware
Arm Valhall Gpu Firmware