CVE-2023-32804

CVE-2023-32804: Mali GPU Userspace Driver can make an Out-of-Bounds access

Vendor Arm Ltd
Product Midgard GPU Userspace Driver
Weakness CWE-787
Published December 4, 2023
Last update August 28, 2024

CVSS base score

What the vulnerability does

01Description

Out-of-bounds Write vulnerability in Arm Ltd Midgard GPU Userspace Driver, Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a local non-privileged user to write a constant pattern to a limited amount of memory not allocated by the user space driver.This issue affects Midgard GPU Userspace Driver: from r0p0 through r32p0; Bifrost GPU Userspace Driver: from r0p0 through r44p0; Valhall GPU Userspace Driver: from r19p0 through r44p0; Arm 5th Gen GPU Architecture Userspace Driver: from r41p0 through r44p0.

Key dates

02Disclosure timeline

December 4, 2023 CVE published
August 28, 2024 Record updated