Lucene search

ArmVULNRICHMENT:CVE-2024-4607

HistoryAug 05, 2024 - 11:33 a.m.

CVE-2024-4607 Mali GPU Kernel Driver allows improper GPU memory processing operations

2024-08-0511:33:31

CWE-416

Arm

github.com

cve-2024-4607

use after free

arm ltd

bifrost

valhall

5th gen architecture

memory processing

AI Score

Confidence

High

EPSS

0.001

Percentile

20.8%

SSVC

Exploitation

none

Automatable

Technical Impact

total

JSON

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects Bifrost GPU Kernel Driver: from r41p0 through r49p0; Valhall GPU Kernel Driver: from r41p0 through r49p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r49p0.

CNA Affected

[
  {
    "vendor": "Arm Ltd",
    "product": "Bifrost GPU Kernel Driver",
    "versions": [
      {
        "status": "affected",
        "changes": [
          {
            "at": "r50p0",
            "status": "unaffected"
          }
        ],
        "version": "r41p0",
        "versionType": "patch",
        "lessThanOrEqual": "r49p0"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Arm Ltd",
    "product": "Valhall GPU Kernel Driver",
    "versions": [
      {
        "status": "affected",
        "changes": [
          {
            "at": "r50p0",
            "status": "unaffected"
          }
        ],
        "version": "r41p0",
        "versionType": "patch",
        "lessThanOrEqual": "r49p0"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Arm Ltd",
    "product": "Arm 5th Gen GPU Architecture Kernel Driver",
    "versions": [
      {
        "status": "affected",
        "changes": [
          {
            "at": "r50p0",
            "status": "unaffected"
          }
        ],
        "version": "r41p0",
        "versionType": "patch",
        "lessThanOrEqual": "r49p0"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:arm:bifrost_gpu_kernel_driver:-:*:*:*:*:*:*:*"
    ],
    "vendor": "arm",
    "product": "bifrost_gpu_kernel_driver",
    "versions": [
      {
        "status": "affected",
        "version": "r41p0",
        "versionType": "custom",
        "lessThanOrEqual": "r49p0"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:a:arm:valhall_gpu_kernel_driver:-:*:*:*:*:*:*:*"
    ],
    "vendor": "arm",
    "product": "valhall_gpu_kernel_driver",
    "versions": [
      {
        "status": "affected",
        "version": "r41p0",
        "versionType": "custom",
        "lessThanOrEqual": "r49p0"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "cpes": [
      "cpe:2.3:a:arm:arm_5th_gen_gpu_architecture_kernel_driver:*:*:*:*:*:*:*:*"
    ],
    "vendor": "arm",
    "product": "arm_5th_gen_gpu_architecture_kernel_driver",
    "versions": [
      {
        "status": "affected",
        "version": "r41p0",
        "versionType": "custom",
        "lessThanOrEqual": "r49p0"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities