Mali GPU Kernel Driver allows improper GPU processing operations

Vulnerability

A use-after-free vulnerability exists in the Arm Valhall GPU Kernel Driver for versions r37p0 through r40p0 [1]. The flaw allows a local non-privileged user to make improper GPU processing operations that trigger a use-after-free condition in kernel memory [1]. The affected driver is used in Arm Mali GPUs.

Exploitation

An attacker must have local access to the system and be able to execute code as a non-privileged user [1]. The exploitation sequence involves sending crafted GPU processing operations that cause the kernel driver to reference memory that has already been freed, leading to a use-after-free condition [1]. No additional authentication or user interaction beyond local access is required.

Impact

Successful exploitation allows the attacker to read or write freed kernel memory, potentially leading to information disclosure or privilege escalation within the GPU kernel context [1]. The confidentiality and integrity of GPU-related data can be compromised.

Mitigation

Arm has released updated GPU driver versions that fix the vulnerability; users should update to a patched driver version beyond r40p0 [1]. The affected driver versions are r37p0, r38p0, r39p0, and r40p0. No workarounds are documented in the available reference [1].