Vulnerability Details CVE-2022-38181
The Arm Mali GPU kernel driver allows unprivileged users to access freed memory because GPU memory operations are mishandled. This affects Bifrost r0p0 through r38p1, and r39p0; Valhall r19p0 through r38p1, and r39p0; and Midgard r4p0 through r32p0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.23
EPSS Ranking 95.5%
CVSS Severity
CVSS v3 Score 8.8
Proposed Action
Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root privilege and/or disclose information.
Ransomware Campaign
Unknown
References
- http://packetstormsecurity.com/files/172854/Android-Arm-Mali-GPU-Arbitrary-Code-Execution.html
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
- https://developer.arm.com/support/arm-security-updates
- https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/
- https://securitylab.github.com/advisories/GHSL-2022-054_Arm_Mali/
- http://packetstormsecurity.com/files/172854/Android-Arm-Mali-GPU-Arbitrary-Code-Execution.html
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities
- https://developer.arm.com/support/arm-security-updates
- https://github.blog/2023-01-23-pwning-the-all-google-phone-with-a-non-google-bug/
- https://securitylab.github.com/advisories/GHSL-2022-054_Arm_Mali/
Products affected by CVE-2022-38181
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r0p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r11p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r16p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r16p0-01eac0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r17p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r19p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r1p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r25p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r26p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r28p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r29p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r30p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r30p0-01eac0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r34p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r35p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r36p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r38p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r38p1
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r39p0
-
cpe:2.3:a:arm:bifrost_gpu_kernel_driver:r7p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r12p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r13p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r19p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r26p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r28p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r28p0-01eac0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r29p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r30p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r30p0-01eac0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r31p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r4p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r6p0
-
cpe:2.3:a:arm:midgard_gpu_kernel_driver:r8p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r19p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r19p0-01eac0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r25p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r26p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r28p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r29p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r30p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r30p0-01eac0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r34p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r35p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r36p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r37p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r38p0
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r38p1
-
cpe:2.3:a:arm:valhall_gpu_kernel_driver:r39p0