Vulnerability Description
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Valhall GPU Firmware, Arm Ltd Arm 5th Gen GPU Architecture Firmware allows a local non-privileged user to make improper GPU processing operations to access a limited amount outside of buffer bounds. If the operations are carefully prepared, then this in turn could give them access to all system memory. This issue affects Valhall GPU Firmware: from r29p0 through r46p0; Arm 5th Gen GPU Architecture Firmware: from r41p0 through r46p0.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Arm | 5Th Gen Gpu Architecture Firmware | >= r41p0, < r47p0 |
| Arm | Valhall Gpu Firmware | >= r29p0, < r47p0 |
Related Weaknesses (CWE)
References
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20VulnerabVendor Advisory
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20VulnerabVendor Advisory
FAQ
What is CVE-2024-0153?
CVE-2024-0153 is a vulnerability with a CVSS score of 7.8 (HIGH). Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Valhall GPU Firmware, Arm Ltd Arm 5th Gen GPU Architecture Firmware allows a local non-privileged user ...
How severe is CVE-2024-0153?
CVE-2024-0153 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-0153?
Check the references section above for vendor advisories and patch information. Affected products include: Arm 5Th Gen Gpu Architecture Firmware, Arm Valhall Gpu Firmware.