CVE-2023-6143

HIGH

Arm Ltd GPU Drivers - Use After Free

Title source: llm

Description

Use After Free vulnerability in Arm Ltd Midgard GPU Kernel Driver, Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to exploit a software race condition to perform improper memory processing operations. If the system’s memory is carefully prepared by the user and the system is under heavy load, then this in turn cause a use-after-free.This issue affects Midgard GPU Kernel Driver: from r13p0 through r32p0; Bifrost GPU Kernel Driver: from r1p0 through r18p0; Valhall GPU Kernel Driver: from r37p0 through r46p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r46p0.

References (1)

Core 1

Core References

Vendor Advisory

https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

Scores

CVSS v3 8.4

EPSS 0.0012

EPSS Percentile 30.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-416

Status published

Products (4)

arm/5th_gen_gpu_architecture_kernel_driver r41p0 - r47p0

arm/bifrost_gpu_kernel_driver r1p0 - r19p0

arm/midgard_gpu_kernel_driver r13p0 - r32p0

arm/valhall_gpu_kernel_driver r37p0 - r47p0

Published Mar 04, 2024

Tracked Since Feb 18, 2026