PT-2025-3686 · Arm · Arm Bifrost Gpu Kernel Driver+2
Published
2025-02-03
·
Updated
2025-12-18
·
CVE-2024-6790
CVSS v3.1
6.1
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H |
Name of the Vulnerable Software and Affected Versions
Arm Ltd Bifrost GPU Kernel Driver versions r44p1, from r46p0 through r49p0, from r50p0 through r51p0
Arm Ltd Valhall GPU Kernel Driver versions r44p1, from r46p0 through r49p0, from r50p0 through r51p0
Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver versions r44p1, from r46p0 through r49p0, from r50p0 through r51p0
Description
The issue allows a non-privileged user process to make valid GPU memory processing operations, including via WebGL or WebGPU, to cause the whole system to become unresponsive.
Recommendations
For Arm Ltd Bifrost GPU Kernel Driver versions r44p1, from r46p0 through r49p0, from r50p0 through r51p0: Update to a version that contains a fix for this issue.
For Arm Ltd Valhall GPU Kernel Driver versions r44p1, from r46p0 through r49p0, from r50p0 through r51p0: Update to a version that contains a fix for this issue.
For Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver versions r44p1, from r46p0 through r49p0, from r50p0 through r51p0: Update to a version that contains a fix for this issue.
As a temporary workaround, consider restricting access to WebGL or WebGPU to minimize the risk of exploitation.
Fix
Infinite Loop
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Arm 5Th Gen Gpu Architecture Kernel Driver
Arm Bifrost Gpu Kernel Driver
Valhall Gpu Kernel Driver