Description
A local non-privileged user can make improper GPU processing operations to access a limited amount outside of buffer bounds or to exploit a software race condition. If the system’s memory is carefully prepared by the user, then this in turn could give them access to already freed memory
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected products
- Arm Ltd / Arm 5th Gen GPU Architecture Kernel Driverr41p0 – r44p1
- Arm Ltd / Valhall GPU Kernel Driverr44p0 – r44p1