Arm vulnerability discovered in Mali GPU Drivers being actively taken advantage of in the wild

AndyC 12 June 2024

Arm vulnerability discovered in Mali GPU Drivers being actively taken advantage of in the wild

Arm zero-day in Mali GPU Drivers actively exploited in the wild

Arm vulnerability discovered in Mali GPU Drivers being actively taken advantage of in the wild

Pierluigi Paganini
June 11, 2024

Arm issues alert on an actively exploited vulnerability in Mali GPU Kernel Driver.

Arm has warned of an actively exploited vulnerability, identified as CVE-2024-4610, in Mali GPU Kernel Driver.

The flaw is a memory access issue that affects Bifrost GPU Kernel Driver (all versions from r34p0 to r40p0) and Valhall GPU Kernel Driver (all versions from r34p0 to r40p0).

According to the information in the advisory released by the company, “Unauthorized users with local non-privileged access can manipulate GPU memory operations improperly, allowing them to gain unauthorized access to already released memory. Arm has received reports of malicious exploitation of this vulnerability in real-world scenarios. Users are advised to apply updates if they are affected by this security issue.”

Resolution for the vulnerability has been provided in Bifrost and Valhall GPU Kernel Driver in version r41p0, which was released on November 24, 2022.

An unauthorized local attacker with non-privileged access is able to manipulate the system’s memory to perform improper GPU memory actions, enabling access to already freed memory.

If affected, it is recommended that users proceed with the necessary upgrades to mitigate this issue.

Stay up to date by following me on Twitter: @securityaffairsFacebook, and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, Mali GPU Kernel Driver)

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts

Tags: , , , , , , , , , , , , , , , , , ,

More Stories

Surge of OAuth Device Code Phishing Attacks Targets M365 Accounts

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

AndyC 20 December 2025
CLOP targets Gladinet CentreStack servers in large-scale extortion campaign

CLOP targets Gladinet CentreStack servers in large-scale extortion campaign

AndyC 20 December 2025
ASRock, ASUS, GIGABYTE, MSI Boards vulnerable to pre-boot memory attacks

ASRock, ASUS, GIGABYTE, MSI Boards vulnerable to pre-boot memory attacks

AndyC 20 December 2025
China-linked APT UAT-9686 is targeting Cisco Secure Email Gateway and Secure Email and Web Manager

China-linked APT UAT-9686 is targeting Cisco Secure Email Gateway and Secure Email and Web Manager

AndyC 20 December 2025
Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw

Hewlett Packard Enterprise (HPE) fixed maximum severity OneView flaw

AndyC 19 December 2025
DIG AI: Uncensored Darknet AI Assistant at the Service of Criminals and Terrorists

DIG AI: Uncensored Darknet AI Assistant at the Service of Criminals and Terrorists

AndyC 19 December 2025

You may have missed

Surge of OAuth Device Code Phishing Attacks Targets M365 Accounts

Russia was behind a destructive cyber attack on a water utility in 2024, Denmark says

AndyC 20 December 2025
Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers

AndyC 20 December 2025

Microsoft 365 accounts targeted in wave of OAuth phishing attacks

AndyC 20 December 2025
State-linked and criminal hackers use device code phishing against M365 users

State-linked and criminal hackers use device code phishing against M365 users

AndyC 20 December 2025
Three ways teams can tackle Iran’s tangled web of state-sponsored espionage

Three ways teams can tackle Iran’s tangled web of state-sponsored espionage

AndyC 20 December 2025

Subscribe To InfoSec Today News

You have successfully subscribed to the newsletter

There was an error while trying to send your request. Please try again.

World Wide Crypto will use the information you provide on this form to be in touch with you and to provide updates and marketing.