CarderPlanet
Professional
- Messages
- 2,552
- Reaction score
- 675
- Points
- 83
GPU drivers have been found to contain vulnerabilities that give hackers your information.
Arm (Arm Holdings) has warned of an actively exploited vulnerability affecting widely used Mali GPU drivers. The bug was discovered by researchers from the Google Threat Analysis Group (TAG) and Project Zero.
Details have not yet been disclosed, but the vulnerability CVE-2023-4211 is described as incorrect access to freed memory, which can allow sensitive data to be compromised or manipulated. Arm explains that a local user with no privileges can perform incorrect GPU memory processing operations to gain access to already freed memory.
The company adds that it has found evidence that the vulnerability "may be subject to limited, targeted exploitation."
The following driver versions are affected:
The Midgard, Bifrost, and Valhall series were introduced in 2013, 2016, and 2019, respectively, so they relate to older device models. Popular devices using the Valhall architecture (Mali-G77) include the Samsung Galaxy S20 / S20 FE, Xiaomi Redmi K30/K40, Motorola Edge 40, and OnePlus Nord 2.
Arm's 5th-generation GPU architecture was introduced to the market in May 2023 with the Mali-G720 and Mali-G620 chips targeting premium high-performance smartphones.
The manufacturer reports that the vulnerability has been fixed for Bifrost, Valhall and the Arm GPU architecture of the 5th generation with the kernel driver version r43p0 (released on March 24, 2023). Midgard is no longer supported, so it is unlikely to receive a fix for CVE-2023-4211.
Arm also disclosed other vulnerabilities: CVE-2023-33200 and CVE-2023-34970, which allow an unprivileged user to use the race condition to perform incorrect GPU operations to access freed memory. The bugs affect Bifrost, Valhall, and Arm GPU architecture core driver versions up to r44p0, with recommended upgrade targets r44p1 and r45p0 (released on September 15, 2023).
All three vulnerabilities can be exploited by an attacker with local access to the device, which is usually achieved by attracting users to download applications from unofficial sources.
Arm (Arm Holdings) has warned of an actively exploited vulnerability affecting widely used Mali GPU drivers. The bug was discovered by researchers from the Google Threat Analysis Group (TAG) and Project Zero.
Details have not yet been disclosed, but the vulnerability CVE-2023-4211 is described as incorrect access to freed memory, which can allow sensitive data to be compromised or manipulated. Arm explains that a local user with no privileges can perform incorrect GPU memory processing operations to gain access to already freed memory.
The company adds that it has found evidence that the vulnerability "may be subject to limited, targeted exploitation."
The following driver versions are affected:
- Midgard GPU Core Driver: all versions from r12p0 to r32p0;
- Bifrost GPU Core Driver: all versions from r0p0 to r42p0;
- Valhall GPU Core Driver: all versions from r19p0 to r42p0;
- Arm 5th generation GPU Architecture Core Driver: all versions from r41p0 to r42p0.
The Midgard, Bifrost, and Valhall series were introduced in 2013, 2016, and 2019, respectively, so they relate to older device models. Popular devices using the Valhall architecture (Mali-G77) include the Samsung Galaxy S20 / S20 FE, Xiaomi Redmi K30/K40, Motorola Edge 40, and OnePlus Nord 2.
Arm's 5th-generation GPU architecture was introduced to the market in May 2023 with the Mali-G720 and Mali-G620 chips targeting premium high-performance smartphones.
The manufacturer reports that the vulnerability has been fixed for Bifrost, Valhall and the Arm GPU architecture of the 5th generation with the kernel driver version r43p0 (released on March 24, 2023). Midgard is no longer supported, so it is unlikely to receive a fix for CVE-2023-4211.
Arm also disclosed other vulnerabilities: CVE-2023-33200 and CVE-2023-34970, which allow an unprivileged user to use the race condition to perform incorrect GPU operations to access freed memory. The bugs affect Bifrost, Valhall, and Arm GPU architecture core driver versions up to r44p0, with recommended upgrade targets r44p1 and r45p0 (released on September 15, 2023).
All three vulnerabilities can be exploited by an attacker with local access to the device, which is usually achieved by attracting users to download applications from unofficial sources.
