PT-2024-22869 · Arm · Arm Bifrost Gpu Kernel Driver+2
Published
2024-08-05
·
Updated
2024-09-10
·
CVE-2024-2937
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Arm Ltd Bifrost GPU Kernel Driver versions r41p0 through r49p0
Arm Ltd Valhall GPU Kernel Driver versions r41p0 through r49p0
Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver versions r41p0 through r49p0
Description
The issue allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory. This is due to a Use After Free vulnerability in the affected drivers.
Recommendations
For Arm Ltd Bifrost GPU Kernel Driver versions r41p0 through r49p0, update to a version outside of this range to resolve the issue.
For Arm Ltd Valhall GPU Kernel Driver versions r41p0 through r49p0, update to a version outside of this range to resolve the issue.
For Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver versions r41p0 through r49p0, update to a version outside of this range to resolve the issue.
Fix
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Arm 5Th Gen Gpu Architecture Kernel Driver
Arm Bifrost Gpu Kernel Driver
Arm Valhall Gpu Kernel Driver