cve/2024/CVE-2024-1065.md

### [CVE-2024-1065](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-1065)
![](https://img.shields.io/static/v1?label=Product&message=Arm%205th%20Gen%20GPU%20Architecture%20Kernel%20Driver&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Bifrost%20GPU%20Kernel%20Driver&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Valhall%20GPU%20Kernel%20Driver&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=r45p0%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-416%20Use%20After%20Free&color=brightgreen)

### Description

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.This issue affects Bifrost GPU Kernel Driver: from r45p0 through r48p0; Valhall GPU Kernel Driver: from r45p0 through r48p0; Arm 5th Gen GPU Architecture Kernel Driver: from r45p0 through r48p0.

### POC

#### Reference
- https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

#### Github
- https://github.com/1337eng/arm_mali_open_source_drivers
- https://github.com/ARPSyndicate/cve-scores