Arm has launched safety patches to comprise a safety flaw within the Mali GPU Kernel Driver that has come underneath lively exploitation within the wild.
Tracked as CVE-2023-4211, the shortcoming impacts the next driver variations –
- Midgard GPU Kernel Driver: All variations from r12p0 – r32p0
- Bifrost GPU Kernel Driver: All variations from r0p0 – r42p0
- Valhall GPU Kernel Driver: All variations from r19p0 – r42p0
- Arm fifth Gen GPU Structure Kernel Driver: All variations from r41p0 – r42p0
“A neighborhood non-privileged consumer could make improper GPU reminiscence processing operations to realize entry to already freed reminiscence,” Arm mentioned in a Monday advisory. “There may be proof that this vulnerability could also be underneath restricted, focused exploitation.”
The problem, credited to Maddie Stone of Google’s Menace Evaluation Group (TAG) and Jann Horn of Google Undertaking Zero, has been addressed in Bifrost, Valhall and Arm fifth Gen GPU Structure Kernel Driver r43p0.
Google, in its personal month-to-month Android Safety Bulletin for October 2023, mentioned it discovered indications of focused exploitation of CVE-2023-4211 and CVE-2023-4863, a extreme flaw impacting the WebP picture format within the Chrome net browser that was patched final month.
Actual specifics surrounding the character of the assaults are nonetheless unclear, however indications are that they might have been weaponized as a part of a spy ware marketing campaign concentrating on high-risk people.
Additionally resolved by Arm are two different flaws within the Mali GPU Kernel Driver that enable for improper GPU reminiscence processing operations –
- CVE-2023-33200 – A neighborhood non-privileged consumer could make improper GPU processing operations to use a software program race situation. If the system’s reminiscence is fastidiously ready by the consumer, then this in flip may give them entry to already freed reminiscence.
- CVE-2023-34970 – A neighborhood non-privileged consumer could make improper GPU processing operations to entry a restricted quantity exterior of buffer bounds or to use a software program race situation. If the system’s reminiscence is fastidiously ready by the consumer, then this, in flip, may give them entry to already freed reminiscence.
This isn’t the primary time flaws in Arm Mali GPU Kernel Driver have come underneath lively exploitation. Earlier this 12 months, Google TAG disclosed that CVE-2023-26083 was abused along side a collection of 4 different flaws by a spy ware vendor to penetrate Samsung gadgets.