CVE-2023-4211

Summary

A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory.

Affected Software

VendorProductVersion RangeStatus
Arm LtdMidgard GPU Kernel Driverr12p0 <= r32p0affected
Arm LtdBifrost GPU Kernel Driverr0p0 <= r42p0affected
Arm LtdValhall GPU Kernel Driverr19p0 <= r42p0affected
Arm LtdArm 5th Gen GPU Architecture Kernel Driverr41p0 <= r42p0affected

Weaknesses

  • CWE-416: CWE-416 Use after free

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References