Back

CVE-2024-0153

July 1, 2024, 12:37 p.m.

Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.

Products

Arm Ltd Valhall GPU Firmware

  • r29p0 - r46p0

Arm Ltd Arm 5th Gen GPU Architecture Firmware

  • r41p0 - r46p0

Source

arm-security@arm.com

Tags

CWE-119
arm-security@arm.com
2024-07-01
CVE-2024-0153

CVE-2024-0153 details

Published : July 1, 2024, 9:15 a.m.
Last Modified : July 1, 2024, 12:37 p.m.

Description

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Valhall GPU Firmware, Arm Ltd Arm 5th Gen GPU Architecture Firmware allows a local non-privileged user to make improper GPU processing operations to access a limited amount outside of buffer bounds. If the operations are carefully prepared, then this in turn could give them access to all system memory. This issue affects Valhall GPU Firmware: from r29p0 through r46p0; Arm 5th Gen GPU Architecture Firmware: from r41p0 through r46p0.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

URL Source
https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities arm-security@arm.com
This website uses the NVD API, but is not approved or certified by it.