CVE-2023-4211 Mali GPU Kernel Driver Allows Improper GPU Memory Processing Operations

2023-10-0117:00:27

CWE-416

Arm

www.cve.org

mali gpu

improper memory processing

kernel driver

cve-2023-4211

0.213 Low

EPSS

Percentile

96.5%

JSON

A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Midgard GPU Kernel Driver",
    "vendor": "Arm Ltd",
    "versions": [
      {
        "lessThanOrEqual": "r32p0",
        "status": "affected",
        "version": "r12p0",
        "versionType": "patch"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Bifrost GPU Kernel Driver",
    "vendor": "Arm Ltd",
    "versions": [
      {
        "lessThanOrEqual": "r42p0",
        "status": "affected",
        "version": "r0p0",
        "versionType": "patch"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Valhall GPU Kernel Driver",
    "vendor": "Arm Ltd",
    "versions": [
      {
        "lessThanOrEqual": "r42p0",
        "status": "affected",
        "version": "r19p0",
        "versionType": "patch"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Arm 5th Gen GPU Architecture Kernel  Driver",
    "vendor": "Arm Ltd",
    "versions": [
      {
        "lessThanOrEqual": "r42p0",
        "status": "affected",
        "version": "r41p0",
        "versionType": "patch"
      }
    ]
  }
]