CVE-2023-32804

HIGH

Arm Midgard/Bifrost/Valhall/5th Gen GPU Kernel Driver - Out-of-bounds Write

Title source: llm

Description

Out-of-bounds Write vulnerability in Arm Ltd Midgard GPU Userspace Driver, Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a local non-privileged user to write a constant pattern to a limited amount of memory not allocated by the user space driver.This issue affects Midgard GPU Userspace Driver: from r0p0 through r32p0; Bifrost GPU Userspace Driver: from r0p0 through r44p0; Valhall GPU Userspace Driver: from r19p0 through r44p0; Arm 5th Gen GPU Architecture Userspace Driver: from r41p0 through r44p0.

References (1)

Core 1

Core References

Vendor Advisory

https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

Scores

CVSS v3 7.8

EPSS 0.0015

EPSS Percentile 34.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-787

Status published

Products (4)

arm/5th_gen_gpu_architecture_kernel_driver r41p0 - r44p0

arm/bifrost_gpu_kernel_driver r0p0 - r44p0

arm/midgard_gpu_kernel_driver r0p0 - r32p0

arm/valhall_gpu_kernel_driver r19p0 - r44p0

Published Dec 04, 2023

Tracked Since Feb 18, 2026