CVE-2024-2937

Severity CVSS v4.0:
Pending analysis
Type:
CWE-416 Use After Free
Publication date:
05/08/2024
Last modified:
10/09/2024

Description

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects Bifrost GPU Kernel Driver: from r41p0 through r49p0; Valhall GPU Kernel Driver: from r41p0 through r49p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r49p0.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:arm:5th_gen_gpu_architecture_kernel_driver:*:*:*:*:*:*:*:* r41p0 (including) r50p0 (excluding)
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:*:*:*:*:*:*:*:* r41p0 (including) r50p0 (excluding)
cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:* r41p0 (including) r50p0 (excluding)