Use After Free Vulnerability in Arm Ltd Valhall GPU Kernel Driver

CVE-2023-6363

Summary

A use after free vulnerability has been identified in the Valhall GPU Kernel Driver by Arm Ltd, where a local non-privileged user could exploit improper GPU memory processing operations. By carefully preparing the system’s memory, an attacker could gain unauthorized access to previously freed memory blocks. This situation poses a security risk for systems utilizing the affected GPU drivers, specifically versions ranging from r41p0 to r47p0 in both the Valhall and Arm 5th Gen architectures.

References