Description
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to perform valid GPU processing operations, including via WebGL or WebGPU, to access outside of buffer bounds.This issue affects Bifrost GPU Userspace Driver: from r18p0 through r49p3, from r50p0 through r51p0; Valhall GPU Userspace Driver: from r28p0 through r49p3, from r50p0 through r54p0; Arm 5th Gen GPU Architecture Userspace Driver: from r41p0 through r49p3, from r50p0 through r54p0.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- Arm Ltd / Arm 5th Gen GPU Architecture Userspace Driverr41p0 – r49p3
- Arm Ltd / Arm 5th Gen GPU Architecture Userspace Driverr50p0 – r54p0
- Arm Ltd / Bifrost GPU Userspace Driverr18p0 – r49p3
- Arm Ltd / Bifrost GPU Userspace Driverr50p0 – r51p0
- Arm Ltd / Valhall GPU Userspace Driverr28p0 – r49p3
- Arm Ltd / Valhall GPU Userspace Driverr50p0 – r54p0