CVE-2023-6363
published 2024-05-03CVE-2023-6363: Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to…
PriorityP422medium5.1CVSS 3.1
AVLACLPRNUINSUCNILAL
EPSS
0.17%
6.6th percentile
Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations. If the system’s memory is carefully prepared by the user, then this in turn could give them access to already freed memory.
This issue affects Valhall GPU Kernel Driver: from r41p0 through r47p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r47p0.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arm | 5th_gen_gpu_architecture_kernel_driver | >= r41p0 < r48p0 | r48p0 |
| arm | valhall_gpu_kernel_driver | >= r41p0 < r48p0 | r48p0 |
| arm_ltd | arm_5th_gen_gpu_architecture_kernel_driver | r41p0 – r47p0 | — |
| arm_ltd | valhall_gpu_kernel_driver | r41p0 – r47p0 | — |
| android | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gg2x-v7xp-pj7x: Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged us
ghsa_unreviewed·2024-05-03
CVE-2023-6363 [MEDIUM] CWE-416 GHSA-gg2x-v7xp-pj7x: Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged us
Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations. If the system’s memory is carefully prepared by the user, then this in turn could give them access to already freed memory.
This issue affects Valhall GPU Kernel Driver: from r41p0 through r47p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r47p0.
Android
CVE-2023-6363: Mali
vendor_android·2024-05-01·CVSS 5.1
CVE-2023-6363 [MEDIUM] CVE-2023-6363: Mali
Android Security Bulletin 2024-05-01
CVE: CVE-2023-6363
Severity: HIGH
Component: Mali
References: A-303632069
*
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-05-03
Published