Arm has launched security patches to include a security flaw within the Mali GPU Kernel Driver that has come beneath energetic exploitation within the wild.
Tracked as CVE-2023-4211, the shortcoming impacts the next driver variations –
- Midgard GPU Kernel Driver: All variations from r12p0 – r32p0
- Bifrost GPU Kernel Driver: All variations from r0p0 – r42p0
- Valhall GPU Kernel Driver: All variations from r19p0 – r42p0
- Arm fifth Gen GPU Structure Kernel Driver: All variations from r41p0 – r42p0
“An area non-privileged consumer could make improper GPU reminiscence processing operations to achieve entry to already freed reminiscence,” Arm mentioned in a Monday advisory. “There’s proof that this vulnerability could also be beneath restricted, focused exploitation.”
The problem, credited to Maddie Stone of Google’s Risk Evaluation Group (TAG) and Jann Horn of Google Venture Zero, has been addressed in Bifrost, Valhall and Arm fifth Gen GPU Structure Kernel Driver r43p0.
Google, in its personal month-to-month Android Safety Bulletin for October 2023, mentioned it discovered indications of focused exploitation of CVE-2023-4211 and CVE-2023-4863, a extreme flaw impacting the WebP picture format within the Chrome internet browser that was patched final month.
Actual specifics surrounding the character of the assaults are nonetheless unclear, however indications are that they might have been weaponized as a part of a spy ware marketing campaign concentrating on high-risk people.
Additionally resolved by Arm are two different flaws within the Mali GPU Kernel Driver that enable for improper GPU reminiscence processing operations –
- CVE-2023-33200 – An area non-privileged consumer could make improper GPU processing operations to take advantage of a software program race situation. If the system’s reminiscence is fastidiously ready by the consumer, then this in flip may give them entry to already freed reminiscence.
- CVE-2023-34970 – An area non-privileged consumer could make improper GPU processing operations to entry a restricted quantity exterior of buffer bounds or to take advantage of a software program race situation. If the system’s reminiscence is fastidiously ready by the consumer, then this, in flip, may give them entry to already freed reminiscence.
This isn’t the primary time flaws in Arm Mali GPU Kernel Driver have come beneath energetic exploitation. Earlier this yr, Google TAG disclosed that CVE-2023-26083 was abused along side a collection of 4 different flaws by a spy ware vendor to penetrate Samsung gadgets.
