Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-26083

Memory leak vulnerability in Mali GPU Kernel Driver in Midgard GPU Kernel Driver all versions from r6p0 - r32p0, Bifrost GPU Kernel Driver all versions from r0p0 - r42p0, Valhall GPU Kernel Driver all versions from r19p0 - r42p0, and Avalon GPU Kernel Driver all versions from r41p0 - r42p0 allows a non-privileged user to make valid GPU processing operations that expose sensitive kernel metadata.

Published

2023-04-06T16:15:07.843

Last Modified

2025-10-22T00:18:16.587

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 3.3 (LOW)

Weaknesses

Type: Primary
CWE-401
Type: Secondary
CWE-401

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	arm	5th_gen_gpu_architecture_kernel_driver	< r43p0	Yes
Application	arm	bifrost_gpu_kernel_driver	< r43p0	Yes
Application	arm	midgard_gpu_kernel_driver	≤ r32p0	Yes
Application	arm	valhall_gpu_kernel_driver	< r43p0	Yes

References

https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities Vendor Advisory ([email protected])
https://www.cybersecurity-help.cz/vdb/SB2023033049 Third Party Advisory ([email protected])
https://www.cybersecurity-help.cz/vulnerabilities/74210/ Third Party Advisory ([email protected])
https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.cybersecurity-help.cz/vdb/SB2023033049 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.cybersecurity-help.cz/vulnerabilities/74210/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-26083 (134c704f-9b21-4f2e-91b3-4a467353bcc0)