CVE-2023-28147
published 2023-06-02CVE-2023-28147: An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed…
PriorityP426medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
EPSS
0.18%
7.9th percentile
An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r29p0 through r32p0, Bifrost r17p0 through r42p0 before r43p0, Valhall r19p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arm | avalon_gpu_kernel_driver | >= r41p0 < r43p0 | r43p0 |
| arm | bifrost_gpu_kernel_driver | >= r17p0 < r43p0 | r43p0 |
| arm | midgard_gpu_kernel_driver | r29p0 – r32p0 | — |
| arm | valhall_gpu_kernel_driver | >= r19p0 < r43p0 | r43p0 |
| android | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
kernel: watchdog: Fix kmemleak in watchdog_cdev_register
vendor_redhat·2025-09-15·CVSS 5.5
CVE-2023-53234 [MEDIUM] CWE-772 kernel: watchdog: Fix kmemleak in watchdog_cdev_register
kernel: watchdog: Fix kmemleak in watchdog_cdev_register
In the Linux kernel, the following vulnerability has been resolved:
watchdog: Fix kmemleak in watchdog_cdev_register
kmemleak reports memory leaks in watchdog_dev_register, as follows:
unreferenced object 0xffff888116233000 (size 2048):
comm ""modprobe"", pid 28147, jiffies 4353426116 (age 61.741s)
hex dump (first 32 bytes):
80 fa b9 05 81 88 ff ff 08 30 23 16 81 88 ff ff .........0#.....
08 30 23 16 81 88 ff ff 00 00 00 00 00 00 00 00 .0#.............
backtrace:
[] __kmem_cache_alloc_node+0x157/0x220
[] kmalloc_trace+0x21/0x110
[] watchdog_dev_register+0x4e/0x780 [watchdog]
[] __watchdog_register_device+0x4f0/0x680 [watchdog]
[] watchdog_register_device+0xd2/0x110 [watchdog]
[] 0xffffffffc10880ae
[] do_one_initcall+0xcb/0x4d0
[] do
Android
CVE-2023-28147: Mali
vendor_android·2023-07-01·CVSS 5.5
CVE-2023-28147 [MEDIUM] CVE-2023-28147: Mali
Android Security Bulletin 2023-07-01
CVE: CVE-2023-28147
Severity: HIGH
Component: Mali
References: A-274005916
*
GHSA
GHSA-38mh-jrc4-gqqf: An issue was discovered in the Arm Mali GPU Kernel Driver
ghsa_unreviewed·2023-06-02
CVE-2023-28147 [MEDIUM] GHSA-38mh-jrc4-gqqf: An issue was discovered in the Arm Mali GPU Kernel Driver
An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r29p0 through r32p0, Bifrost r17p0 through r42p0 before r43p0, Valhall r19p0 through r42p0 before r43p0, and Arm's GPU Architecture Gen5 r41p0 through r42p0 before r43p0.
No detection rules found.
No public exploits indexed.
2023-06-02
Published