Lucene search

[email protected]NVD:CVE-2023-32804

HistoryDec 04, 2023 - 12:15 p.m.

CVE-2023-32804

2023-12-0412:15:07

CWE-787

[email protected]

web.nvd.nist.gov

arm gpu drivers

out-of-bounds write

memory allocation

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

20.2%

JSON

Out-of-bounds Write vulnerability in Arm Ltd Midgard GPU Userspace Driver, Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a local non-privileged user to write a constant pattern to a limited amount of memory not allocated by the user space driver.This issue affects Midgard GPU Userspace Driver: from r0p0 through r32p0; Bifrost GPU Userspace Driver: from r0p0 through r44p0; Valhall GPU Userspace Driver: from r19p0 through r44p0; Arm 5th Gen GPU Architecture Userspace Driver: from r41p0 through r44p0.

Affected configurations

NVD

Node

arm5th_gen_gpu_architecture_kernel_driverRanger41p0–r44p0

armbifrost_gpu_kernel_driverRanger0p0–r44p0

armmidgard_gpu_kernel_driverRanger0p0–r32p0

armvalhall_gpu_kernel_driverRanger19p0–r44p0

References

developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

20.2%

JSON

Related for NVD:CVE-2023-32804

cvelist1 prion1 cve1