Arm has launched safety patches to include a safety flaw within the Mali GPU Kernel Driver that has come underneath lively exploitation within the wild.
Tracked as CVE-2023-4211, the shortcoming impacts the next driver variations –
- Midgard GPU Kernel Driver: All variations from r12p0 – r32p0
- Bifrost GPU Kernel Driver: All variations from r0p0 – r42p0
- Valhall GPU Kernel Driver: All variations from r19p0 – r42p0
- Arm fifth Gen GPU Architecture Kernel Driver: All variations from r41p0 – r42p0
“An area non-privileged consumer could make improper GPU reminiscence processing operations to achieve entry to already freed reminiscence,” Arm stated in a Monday advisory. “There is proof that this vulnerability could also be underneath restricted, focused exploitation.”
The problem, credited to Maddie Stone of Google’s Threat Analysis Group (TAG) and Jann Horn of Google Project Zero, has been addressed in Bifrost, Valhall and Arm fifth Gen GPU Architecture Kernel Driver r43p0.
Google, in its personal month-to-month Android Security Bulletin for October 2023, stated it discovered indications of focused exploitation of CVE-2023-4211 and CVE-2023-4863, a extreme flaw impacting the WebP picture format within the Chrome net browser that was patched final month.
Exact specifics surrounding the character of the assaults are nonetheless unclear, however indications are that they could have been weaponized as a part of a spyware and adware marketing campaign concentrating on high-risk people.
Also resolved by Arm are two different flaws within the Mali GPU Kernel Driver that permit for improper GPU reminiscence processing operations –
- CVE-2023-33200 – An area non-privileged consumer could make improper GPU processing operations to use a software program race situation. If the system’s reminiscence is fastidiously ready by the consumer, then this in flip might give them entry to already freed reminiscence.
- CVE-2023-34970 – An area non-privileged consumer could make improper GPU processing operations to entry a restricted quantity outdoors of buffer bounds or to use a software program race situation. If the system’s reminiscence is fastidiously ready by the consumer, then this, in flip, might give them entry to already freed reminiscence.
This isn’t the primary time flaws in Arm Mali GPU Kernel Driver have come underneath lively exploitation. Earlier this 12 months, Google TAG disclosed that CVE-2023-26083 was abused along side a collection of 4 different flaws by a spyware and adware vendor to penetrate Samsung gadgets.