CVE-2023-32804

Summary

Out-of-bounds Write vulnerability in Arm Ltd Midgard GPU Userspace Driver, Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a local non-privileged user to write a constant pattern to a limited amount of memory not allocated by the user space driver.This issue affects Midgard GPU Userspace Driver: from r0p0 through r32p0; Bifrost GPU Userspace Driver: from r0p0 through r44p0; Valhall GPU Userspace Driver: from r19p0 through r44p0; Arm 5th Gen GPU Architecture Userspace Driver: from r41p0 through r44p0.

Affected Software

VendorProductVersion RangeStatus
Arm LtdMidgard GPU Userspace Driverr0p0 <= r32p0affected
Arm LtdBifrost GPU Userspace Driverr0p0 <= r44p0affected
Arm LtdValhall GPU Userspace Driverr19p0 <= r44p0affected
Arm LtdArm 5th Gen GPU Architecture Userspace Driverr41p0 <= r44p0affected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References