A local non-privileged user can make GPU processing operations that expose sensitive data from previously freed memory.
References
| Link | Resource |
|---|---|
| https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
14 Nov 2023, 20:21
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Arm mali Gpu Kernel Driver
Arm Arm midgard Gpu Kernel Driver Arm bifrost Gpu Kernel Driver Arm valhall Gpu Kernel Driver |
|
| CPE | cpe:2.3:a:arm:bifrost_gpu_kernel_driver:*:*:*:*:*:*:*:* cpe:2.3:a:arm:mali_gpu_kernel_driver:r41p0:*:*:*:*:*:*:* cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:* cpe:2.3:a:arm:midgard_gpu_kernel_driver:*:*:*:*:*:*:*:* |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
| CWE | NVD-CWE-noinfo | |
| References | () https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities - Vendor Advisory |
07 Nov 2023, 16:17
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-11-07 16:15
Updated : 2023-12-10 15:26
NVD link : CVE-2023-4272
Mitre link : CVE-2023-4272
CVE.ORG link : CVE-2023-4272
JSON object : View
Products Affected
arm
- midgard_gpu_kernel_driver
- mali_gpu_kernel_driver
- bifrost_gpu_kernel_driver
- valhall_gpu_kernel_driver
CWE
NVD-CWE-noinfo
CWE-1251
Mirrored Regions with Different Values
CWE-200Exposure of Sensitive Information to an Unauthorized Actor