Arm and Qualcomm have released security updates to patch multiple zero-day vulnerabilities found in their chips. Qualcomm was informed by Google TAG and Project Zero about the vulnerabilities, which include CVE-2023-33106, CVE-2023-33107, CVE-2023-33063, and CVE-2022-22071. Arm also received information about a new zero-day vulnerability, CVE-2023-4211, which is being actively exploited in targeted attacks. The companies have issued patches and recommend users to upgrade if affected. Plus, Arm disclosed two additional vulnerabilities, CVE-2023-33200 and CVE-2023-34970, affecting its Mali GPU kernel driver (#Arm #Qualcomm #security #vulnerabilities #chips #patches #upgrades).

#Arm #Qualcomm #security #vulnerabilities #chips #patches #upgrades

https://www.infosecurity-magazine.com/news/arm-qualcomm-hit-multiple-zeroday/