CVE-2023-6143 - OpenCVE

Use After Free vulnerability in Arm Ltd Midgard GPU Kernel Driver, Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to exploit a software race condition to perform improper memory processing operations. If the system’s memory is carefully prepared by the user and the system is under heavy load, then this in turn cause a use-after-free.This issue affects Midgard GPU Kernel Driver: from r13p0 through r32p0; Bifrost GPU Kernel Driver: from r1p0 through r18p0; Valhall GPU Kernel Driver: from r37p0 through r46p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r46p0.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

History

Wed, 28 Aug 2024 20:00:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 8.4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: Arm

Published: 2024-03-04T09:54:23.132Z

Updated: 2024-08-28T19:03:56.048Z

Reserved: 2023-11-14T23:48:11.625Z

Link: CVE-2023-6143

Vulnrichment

Updated: 2024-08-02T08:21:17.392Z

NVD

Status : Awaiting Analysis

Published: 2024-03-04T10:15:08.807

Modified: 2024-08-28T19:35:07.420

Link: CVE-2023-6143

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-6143", "assignerOrgId": "56a131ea-b967-4a0d-a41e-5f3549952846", "state": "PUBLISHED", "assignerShortName": "Arm", "dateReserved": "2023-11-14T23:48:11.625Z", "datePublished": "2024-03-04T09:54:23.132Z", "dateUpdated": "2024-08-28T19:03:56.048Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Midgard GPU Kernel Driver", "vendor": "Arm Ltd", "versions": [{"lessThanOrEqual": "r32p0", "status": "affected", "version": "r13p0", "versionType": "patch"}]}, {"defaultStatus": "unaffected", "product": "Bifrost GPU Kernel Driver", "vendor": "Arm Ltd", "versions": [{"changes": [{"at": "r19p0", "status": "unaffected"}], "lessThanOrEqual": "r18p0", "status": "affected", "version": "r1p0", "versionType": "patch"}]}, {"defaultStatus": "unaffected", "product": "Valhall GPU Kernel Driver", "vendor": "Arm Ltd", "versions": [{"changes": [{"at": "r47p0", "status": "unaffected"}], "lessThanOrEqual": "r46p0", "status": "affected", "version": "r37p0", "versionType": "patch"}]}, {"defaultStatus": "unaffected", "product": "Arm 5th Gen GPU Architecture Kernel Driver", "vendor": "Arm Ltd", "versions": [{"changes": [{"at": "r47p0", "status": "unaffected"}], "lessThanOrEqual": "r46p0", "status": "affected", "version": "r41p0", "versionType": "patch"}]}], "datePublic": "2024-03-04T09:53:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Use After Free vulnerability in Arm Ltd Midgard GPU Kernel Driver, Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to exploit a software race condition to perform improper memory processing operations. If the system\u2019s memory is carefully prepared by the user and the system is under heavy load, then this in turn cause a use-after-free.<p>This issue affects Midgard GPU Kernel Driver: from r13p0 through r32p0; Bifrost GPU Kernel Driver: from r1p0 through r18p0; Valhall GPU Kernel Driver: from r37p0 through r46p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r46p0.</p>"}], "value": "Use After Free vulnerability in Arm Ltd Midgard GPU Kernel Driver, Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to exploit a software race condition to perform improper memory processing operations. If the system\u2019s memory is carefully prepared by the user and the system is under heavy load, then this in turn cause a use-after-free.This issue affects Midgard GPU Kernel Driver: from r13p0 through r32p0; Bifrost GPU Kernel Driver: from r1p0 through r18p0; Valhall GPU Kernel Driver: from r37p0 through r46p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r46p0.\n\n"}], "problemTypes": [{"descriptions": [{"cweId": "CWE-416", "description": "CWE-416 Use After Free", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "56a131ea-b967-4a0d-a41e-5f3549952846", "shortName": "Arm", "dateUpdated": "2024-03-04T09:54:23.132Z"}, "references": [{"url": "https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "This issue is fixed in the Bifrost Kernel Driver in r19p0, in the Valhall and Arm 5th Gen GPU Architecture Kernel Drivers in r47p0. Users are recommended to upgrade if they are impacted by this issue. Please contact Arm support for Midgard GPUs.<br>"}], "value": "This issue is fixed in the Bifrost Kernel Driver in r19p0, in the Valhall and Arm 5th Gen GPU Architecture Kernel Drivers in r47p0. Users are recommended to upgrade if they are impacted by this issue. Please contact Arm support for Midgard GPUs.\n"}], "source": {"discovery": "UNKNOWN"}, "title": "Mali GPU Kernel Driver allows improper GPU memory processing operations", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T08:21:17.392Z"}, "title": "CVE Program Container", "references": [{"url": "https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities", "tags": ["x_transferred"]}]}, {"affected": [{"vendor": "arm", "product": "midgard_gpu_kernel_driver", "cpes": ["cpe:2.3:a:arm:midgard_gpu_kernel_driver:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "r13p0", "status": "affected", "lessThanOrEqual": "r32p0", "versionType": "custom"}]}, {"vendor": "arm", "product": "bifrost_gpu_kernel_driver", "cpes": ["cpe:2.3:a:arm:bifrost_gpu_kernel_driver:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "r1p0", "status": "affected", "lessThanOrEqual": "r18p0", "versionType": "custom"}]}, {"vendor": "arm", "product": "valhall_gpu_kernel_driver", "cpes": ["cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "r37p0", "status": "affected", "lessThanOrEqual": "r46p0", "versionType": "custom"}]}, {"vendor": "arm", "product": "5th_gen_gpu_architecture_kernel_driver", "cpes": ["cpe:2.3:a:arm:5th_gen_gpu_architecture_kernel_driver:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "r41p0", "status": "affected", "lessThanOrEqual": "r46p0", "versionType": "custom"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.4, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-04-10T04:00:33.950770Z", "id": "CVE-2023-6143", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-28T19:03:56.048Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T08:21:17.392Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.4, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2023-6143", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-04-10T04:00:33.950770Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:arm:midgard_gpu_kernel_driver:*:*:*:*:*:*:*:*"], "vendor": "arm", "product": "midgard_gpu_kernel_driver", "versions": [{"status": "affected", "version": "r13p0", "versionType": "custom", "lessThanOrEqual": "r32p0"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:arm:bifrost_gpu_kernel_driver:*:*:*:*:*:*:*:*"], "vendor": "arm", "product": "bifrost_gpu_kernel_driver", "versions": [{"status": "affected", "version": "r1p0", "versionType": "custom", "lessThanOrEqual": "r18p0"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:arm:valhall_gpu_kernel_driver:*:*:*:*:*:*:*:*"], "vendor": "arm", "product": "valhall_gpu_kernel_driver", "versions": [{"status": "affected", "version": "r37p0", "versionType": "custom", "lessThanOrEqual": "r46p0"}], "defaultStatus": "unknown"}, {"cpes": ["cpe:2.3:a:arm:5th_gen_gpu_architecture_kernel_driver:*:*:*:*:*:*:*:*"], "vendor": "arm", "product": "5th_gen_gpu_architecture_kernel_driver", "versions": [{"status": "affected", "version": "r41p0", "versionType": "custom", "lessThanOrEqual": "r46p0"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-28T19:01:43.822Z"}}], "cna": {"title": "Mali GPU Kernel Driver allows improper GPU memory processing operations", "source": {"discovery": "UNKNOWN"}, "affected": [{"vendor": "Arm Ltd", "product": "Midgard GPU Kernel Driver", "versions": [{"status": "affected", "version": "r13p0", "versionType": "patch", "lessThanOrEqual": "r32p0"}], "defaultStatus": "unaffected"}, {"vendor": "Arm Ltd", "product": "Bifrost GPU Kernel Driver", "versions": [{"status": "affected", "changes": [{"at": "r19p0", "status": "unaffected"}], "version": "r1p0", "versionType": "patch", "lessThanOrEqual": "r18p0"}], "defaultStatus": "unaffected"}, {"vendor": "Arm Ltd", "product": "Valhall GPU Kernel Driver", "versions": [{"status": "affected", "changes": [{"at": "r47p0", "status": "unaffected"}], "version": "r37p0", "versionType": "patch", "lessThanOrEqual": "r46p0"}], "defaultStatus": "unaffected"}, {"vendor": "Arm Ltd", "product": "Arm 5th Gen GPU Architecture Kernel Driver", "versions": [{"status": "affected", "changes": [{"at": "r47p0", "status": "unaffected"}], "version": "r41p0", "versionType": "patch", "lessThanOrEqual": "r46p0"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "This issue is fixed in the Bifrost Kernel Driver in r19p0, in the Valhall and Arm 5th Gen GPU Architecture Kernel Drivers in r47p0. Users are recommended to upgrade if they are impacted by this issue. Please contact Arm support for Midgard GPUs.\n", "supportingMedia": [{"type": "text/html", "value": "This issue is fixed in the Bifrost Kernel Driver in r19p0, in the Valhall and Arm 5th Gen GPU Architecture Kernel Drivers in r47p0. Users are recommended to upgrade if they are impacted by this issue. Please contact Arm support for Midgard GPUs.<br>", "base64": false}]}], "datePublic": "2024-03-04T09:53:00.000Z", "references": [{"url": "https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "Use After Free vulnerability in Arm Ltd Midgard GPU Kernel Driver, Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to exploit a software race condition to perform improper memory processing operations. If the system\u2019s memory is carefully prepared by the user and the system is under heavy load, then this in turn cause a use-after-free.This issue affects Midgard GPU Kernel Driver: from r13p0 through r32p0; Bifrost GPU Kernel Driver: from r1p0 through r18p0; Valhall GPU Kernel Driver: from r37p0 through r46p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r46p0.\n\n", "supportingMedia": [{"type": "text/html", "value": "Use After Free vulnerability in Arm Ltd Midgard GPU Kernel Driver, Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to exploit a software race condition to perform improper memory processing operations. If the system\u2019s memory is carefully prepared by the user and the system is under heavy load, then this in turn cause a use-after-free.<p>This issue affects Midgard GPU Kernel Driver: from r13p0 through r32p0; Bifrost GPU Kernel Driver: from r1p0 through r18p0; Valhall GPU Kernel Driver: from r37p0 through r46p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r46p0.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-416", "description": "CWE-416 Use After Free"}]}], "providerMetadata": {"orgId": "56a131ea-b967-4a0d-a41e-5f3549952846", "shortName": "Arm", "dateUpdated": "2024-03-04T09:54:23.132Z"}}}, "cveMetadata": {"cveId": "CVE-2023-6143", "state": "PUBLISHED", "dateUpdated": "2024-08-28T19:03:56.048Z", "dateReserved": "2023-11-14T23:48:11.625Z", "assignerOrgId": "56a131ea-b967-4a0d-a41e-5f3549952846", "datePublished": "2024-03-04T09:54:23.132Z", "assignerShortName": "Arm"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Use After Free vulnerability in Arm Ltd Midgard GPU Kernel Driver, Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to exploit a software race condition to perform improper memory processing operations. If the system\u2019s memory is carefully prepared by the user and the system is under heavy load, then this in turn cause a use-after-free.This issue affects Midgard GPU Kernel Driver: from r13p0 through r32p0; Bifrost GPU Kernel Driver: from r1p0 through r18p0; Valhall GPU Kernel Driver: from r37p0 through r46p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r46p0.\n\n"}, {"lang": "es", "value": "Vulnerabilidad Use After Free en Arm Ltd Midgard GPU Kernel Driver, Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver permite a un usuario local sin privilegios explotar una condici\u00f3n de ejecuci\u00f3n de software para realizar operaciones de procesamiento de memoria inadecuadas. Si el usuario prepara cuidadosamente la memoria del sistema y el sistema est\u00e1 bajo una carga pesada, esto a su vez provocar\u00e1 un Use After Free. Este problema afecta al controlador del kernel de GPU Midgard: de r13p0 a r32p0; Controlador del kernel de GPU Bifrost: desde r1p0 hasta r18p0; Controlador del kernel de GPU Valhall: desde r37p0 hasta r46p0; Controlador del kernel de arquitectura de GPU Arm de quinta generaci\u00f3n: desde r41p0 hasta r46p0."}], "id": "CVE-2023-6143", "lastModified": "2024-08-28T19:35:07.420", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2024-03-04T10:15:08.807", "references": [{"source": "arm-security@arm.com", "url": "https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities"}], "sourceIdentifier": "arm-security@arm.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-416"}], "source": "arm-security@arm.com", "type": "Secondary"}]}