An Arm product family through 2022-06-29 has a TOCTOU Race Condition that allows non-privileged user to make improper GPU processing operations to gain access to already freed memory.
References
Link | Resource |
---|---|
https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities | Vendor Advisory |
https://developer.arm.com/support/arm-security-updates | Vendor Advisory |
https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities | Vendor Advisory |
https://developer.arm.com/support/arm-security-updates | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 07:10
Type | Values Removed | Values Added |
---|---|---|
References | () https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities - Vendor Advisory | |
References | () https://developer.arm.com/support/arm-security-updates - Vendor Advisory |
27 Nov 2022, 04:31
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:arm:utgard_gpu_kernel_driver:r11p0:*:*:*:*:*:*:* cpe:2.3:a:arm:utgard_gpu_kernel_driver:r12p0:*:*:*:*:*:*:* |
|
References | (MISC) https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities - Vendor Advisory | |
References | (MISC) https://developer.arm.com/support/arm-security-updates - Vendor Advisory | |
CWE | CWE-367 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
23 Nov 2022, 13:16
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-23 03:15
Updated : 2024-11-21 07:10
NVD link : CVE-2022-34830
Mitre link : CVE-2022-34830
CVE.ORG link : CVE-2022-34830
JSON object : View
Products Affected
arm
- utgard_gpu_kernel_driver
CWE
CWE-367
Time-of-check Time-of-use (TOCTOU) Race Condition