COOEY // HUBcompliance · community · intelligence

FAIL › dossier

Arm vendor

9
failure events
0
zero-days
0
RCEs
9
on KEV
0
critical
50
worst shame

Dossier not yet built — the RAG curator builds one for players with ≥2 failure events (factory/dossier.py). The failure history and sentiment below are live.

Failure history 9 events

DateEventSevFlagsShameSummary
2024-06-12 CVE-2024-4610 high ⌖KEV 50 Arm Bifrost and Valhall GPU kernel drivers contain a use-after-free vulnerability that allows a local, non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.
2023-10-03 CVE-2023-4211 high ⌖KEV 50 Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that allows a local, non-privileged user to make improper GPU memory processing operations to gain access to already freed memory.
2023-07-07 CVE-2021-29256 high ⌖KEV 50 Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root privilege and/or disclose information.
2023-04-07 CVE-2023-26083 high ⌖KEV 50 Arm Mali GPU Kernel Driver contains an information disclosure vulnerability that allows a non-privileged user to make valid GPU processing operations that expose sensitive kernel metadata.
2023-03-30 CVE-2022-38181 high ⌖KEV 50 Arm Mali GPU Kernel Driver contains a use-after-free vulnerability that may allow a non-privileged user to gain root privilege and/or disclose information.
2023-03-30 CVE-2022-22706 high ⌖KEV 50 Arm Mali GPU Kernel Driver contains an unspecified vulnerability that allows a non-privileged user to achieve write access to read-only memory pages.
2021-11-03 CVE-2021-27562 high ⌖KEV 50 Arm Trusted Firmware contains an out-of-bounds write vulnerability allowing the non-secure (NS) world to trigger a system halt, overwrite secure data, or print out secure data when calling secure functions under the non-secure processing environment (NSPE) handler mode. This vuln
2021-11-03 CVE-2021-28664 high ⌖KEV 50 Arm Mali Graphics Processing Unit (GPU) kernel driver contains an unspecified vulnerability that may allow a non-privileged user to gain write access to read-only memory, gain root privilege, corrupt memory, and modify the memory of other processes.
2021-11-03 CVE-2021-28663 high ⌖KEV 50 Arm Mali Graphics Processing Unit (GPU) kernel driver contains a use-after-free vulnerability that may allow a non-privileged user to make improper operations on GPU memory to gain root privilege, and/or disclose information.