Arm fixes Mali GPU driver flaw that was exploited by spyware
Take action: Much like the issue of Qualcomm, you as users can't fix this issue. All you can do is be diligent with updating your phone OS and firmware as the updates from the vendor are released. It's important to remember that these vulnerabilities are used by criminals and governments to spy on mobile phones, so don't ignore the updates.
Learn More
A security vulnerability discovered in Arm's Mali GPU drivers has been exploited by commercial spyware to eavesdrop on targeted individuals, as reported by Google. Arm described the bug as allowing a local non-privileged user to manipulate GPU memory operations and gain access to already freed memory, enabling spyware to compromise vulnerable devices.
Qualcomm has just released a similar update for their chips but without details of exploiting.
This vulnerability affects a wide range of devices, including Android handsets made by major manufacturers such as Google and Samsung. The affected drivers are associated with various Mali GPU architectures, including Midgard, Bifrost, Valhall, and the fifth-generation Mali GPUs, potentially impacting millions of systems.
Arm issued an advisory (CVE-2023-4211) regarding this use-after-free bug, affecting specific versions of the Midgard, Bifrost, Valhall, and Arm 5th Gen GPU drivers. The company has released patches for Bifrost to fifth-gen, urging OEMs to upgrade and contact Arm support for Midgard GPUs. This issue has been rectified in version r43p0 of Arm's open source Mali drivers.
Device makers are advised to promptly deploy patches to customers to safeguard against potential exploits.
According to Arm, evidence suggests limited and targeted exploitation of this vulnerability by a commercial surveillance vendor. The identity of the specific exploiters remains undisclosed, but it's anticipated that the targets of these attacks are likely to be specific individuals such as activists, journalists, or individuals of interest to certain governments.
