CVE-2022-34830

An Arm product family through 2022-06-29 has a TOCTOU Race Condition that allows non-privileged user to make improper GPU processing operations to gain access to already freed memory.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:arm:utgard_gpu_kernel_driver:r11p0:*:*:*:*:*:*:*
cpe:2.3:a:arm:utgard_gpu_kernel_driver:r12p0:*:*:*:*:*:*:*

History

21 Nov 2024, 07:10

Type Values Removed Values Added
References () https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities - Vendor Advisory () https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities - Vendor Advisory
References () https://developer.arm.com/support/arm-security-updates - Vendor Advisory () https://developer.arm.com/support/arm-security-updates - Vendor Advisory

27 Nov 2022, 04:31

Type Values Removed Values Added
CPE cpe:2.3:a:arm:utgard_gpu_kernel_driver:r11p0:*:*:*:*:*:*:*
cpe:2.3:a:arm:utgard_gpu_kernel_driver:r12p0:*:*:*:*:*:*:*
References (MISC) https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities - (MISC) https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities - Vendor Advisory
References (MISC) https://developer.arm.com/support/arm-security-updates - (MISC) https://developer.arm.com/support/arm-security-updates - Vendor Advisory
CWE CWE-367
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5

23 Nov 2022, 13:16

Type Values Removed Values Added
New CVE

Information

Published : 2022-11-23 03:15

Updated : 2024-11-21 07:10


NVD link : CVE-2022-34830

Mitre link : CVE-2022-34830

CVE.ORG link : CVE-2022-34830


JSON object : View

Products Affected

arm

  • utgard_gpu_kernel_driver
CWE
CWE-367

Time-of-check Time-of-use (TOCTOU) Race Condition