Memory Disclosure Vulnerability in Arm Android Gralloc Module

Memory Disclosure Vulnerability in Arm Android Gralloc Module

CVE-2023-22808 · LOW Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

An issue was discovered in the Arm Android Gralloc Module. A non-privileged user can read a small portion of the allocator process memory. This affects Bifrost r24p0 through r41p0 before r42p0, Valhall r24p0 through r41p0 before r42p0, and Avalon r41p0 before r42p0.

Learn more about our Cis Benchmark Audit For Google Android.