PT-2025-23495 · Arm · Arm 5Th Gen Gpu Architecture Userspace Driver+2
Published
2025-06-02
·
Updated
2025-07-02
·
CVE-2025-1246
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Arm Ltd Bifrost GPU Userspace Driver versions r18p0 through r51p0
Arm Ltd Valhall GPU Userspace Driver versions r28p0 through r54p0
Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver versions r41p0 through r54p0
Description
The issue allows a non-privileged user process to perform valid GPU processing operations, including via WebGL or WebGPU, to access outside of buffer bounds.
Recommendations
For Arm Ltd Bifrost GPU Userspace Driver versions r18p0 through r51p0, update to a version outside of the affected range to resolve the issue.
For Arm Ltd Valhall GPU Userspace Driver versions r28p0 through r54p0, update to a version outside of the affected range to resolve the issue.
For Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver versions r41p0 through r54p0, update to a version outside of the affected range to resolve the issue.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Arm 5Th Gen Gpu Architecture Userspace Driver
Arm Bifrost Gpu Userspace Driver
Valhall Gpu Userspace Driver