CVE-2023-33200

Published: Oct 3, 2023

Modified: Mar 7, 2025

PUBLISHED

Description

A local non-privileged user can make improper GPU processing operations to exploit a software race condition. If the system’s memory is carefully prepared by the user, then this in turn could give them access to already freed memory.

Vendor	Product	Versions
Arm Ltd	Bifrost GPU Kernel Driver	affected `r17p0 - < r44p1`
Arm Ltd	Valhall GPU Kernel Driver	affected `r19p0 - < r44p1`
Arm Ltd	Arm 5th Gen GPU Architecture Kernel Driver	affected `r41p0 - < r44p1`

Weaknesses (CWE)

CWE-416

References

https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-33200

Description

Affected Products

Weaknesses (CWE)

References