Arm Mali Gpu Kernel Driver

Arm Bifrost/Valhall Kernel Driver Use-After-Free enables local memory compromise
CVE-2024-1067 - May 03, 2024

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations. On Armv8.0 cores, there are certain combinations of the Linux Kernel and Mali GPU kernel driver configurations that would allow the GPU operations to affect the userspace memory of other processes. This issue affects Bifrost GPU Kernel Driver: from r41p0 through r47p0; Valhall GPU Kernel Driver: from r41p0 through r47p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r47p0.

Dangling pointer

Intel Graphics Driver: GPU FreedMem Leak for Local Users
CVE-2023-4272 5.5 - Medium - November 07, 2023

A local non-privileged user can make GPU processing operations that expose sensitive data from previously freed memory.

GPU Memory Manager Driver Improper Access CVE-2023-4295
CVE-2023-4295 7.8 - High - November 07, 2023

A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory.

Integer Overflow or Wraparound

Privilege Escalation via GPU Buffer Overflow in NVIDIA Driver
CVE-2023-34970 4.7 - Medium - October 03, 2023

A local non-privileged user can make improper GPU processing operations to access a limited amount outside of buffer bounds or to exploit a software race condition. If the systems memory is carefully prepared by the user, then this in turn could give them access to already freed memory

Memory Corruption

Local GPU Race Condition Enables Freed Memory Leak (CVE-2023-33200)
CVE-2023-33200 4.7 - Medium - October 03, 2023

A local non-privileged user can make improper GPU processing operations to exploit a software race condition. If the systems memory is carefully prepared by the user, then this in turn could give them access to already freed memory.

Dangling pointer

Arbitrary Memory Read via Improper GPU Op in Mali GPU Kernel Driver
CVE-2023-28469 5.5 - Medium - June 02, 2023

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r29p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0.

ARM Mali GPU Driver: Improper Memory Access via Improper GPU Ops
CVE-2023-28147 5.5 - Medium - June 02, 2023

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r29p0 through r32p0, Bifrost r17p0 through r42p0 before r43p0, Valhall r19p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0.

Memory Leak in ARM Mali GPU Kernel Driver Exposes Kernel Metadata
CVE-2023-26083 3.3 - Low - April 06, 2023

Memory leak vulnerability in Mali GPU Kernel Driver in Midgard GPU Kernel Driver all versions from r6p0 - r32p0, Bifrost GPU Kernel Driver all versions from r0p0 - r42p0, Valhall GPU Kernel Driver all versions from r19p0 - r42p0, and Avalon GPU Kernel Driver all versions from r41p0 - r42p0 allows a non-privileged user to make valid GPU processing operations that expose sensitive kernel metadata.

Memory Leak

CVE-2022-46394: Mali GPU Kernel Driver Access Freed Mem
CVE-2022-46394 8.8 - High - March 08, 2023

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r39p0 through r41p0 before r42p0, and Avalon r41p0 before r42p0.

Dangling pointer

Mali GPU Kernel Driver: PrivEsc via Freed Memory Access
CVE-2022-46395 8.8 - High - March 06, 2023

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r0p0 through r32p0, Bifrost r0p0 through r41p0 before r42p0, Valhall r19p0 through r41p0 before r42p0, and Avalon r41p0 before r42p0.

Dangling pointer

ARM Mali GPU Kernel Driver UAF via Improper GPU Ops (CVE-2022-46891)
CVE-2022-46891 8.8 - High - January 17, 2023

An issue was discovered in the Arm Mali GPU Kernel Driver. There is a use-after-free. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r13p0 through r32p0, Bifrost r1p0 through r40p0, and Valhall r19p0 through r40p0.

Dangling pointer

Use-After-Free in Arm Mali GPU Kernel Driver (CVE-2022-42716)
CVE-2022-42716 8.8 - High - December 12, 2022

An issue was discovered in the Arm Mali GPU Kernel Driver. There is a use-after-free. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Valhall r29p0 through r40P0.

Dangling pointer

Arm Mali GPU KDRV: WritetoReadOnly Memory via Improper Ops
CVE-2022-41757 8.8 - High - November 08, 2022

An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to obtain write access to read-only memory, or obtain access to already freed memory. This affects Valhall r29p0 through r38p1 before r38p2, and r39p0 before r40p0.

Arm Mali GPU Kernel Driver Unprivileged Freed Mem Access (CVE-2022-38181)
CVE-2022-38181 8.8 - High - October 25, 2022

The Arm Mali GPU kernel driver allows unprivileged users to access freed memory because GPU memory operations are mishandled. This affects Bifrost r0p0 through r38p1, and r39p0; Valhall r19p0 through r38p1, and r39p0; and Midgard r4p0 through r32p0.

Dangling pointer