CVE-2025-0427: Mali GPU Kernel Driver allows access to already freed memory
First published: Fri May 02 2025(Updated: )
Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform valid GPU processing operations to gain access to already freed memory.This issue affects Bifrost GPU Kernel Driver: from r8p0 through r49p3, from r50p0 through r51p0; Valhall GPU Kernel Driver: from r19p0 through r49p3, from r50p0 through r53p0; Arm 5th Gen GPU Architecture Kernel Driver: from r41p0 through r49p3, from r50p0 through r53p0.
Credit: arm-security@arm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Arm Bifrost GPU Kernel Driver | >=r8p0<=r49p3>=r50p0<=r51p0 | |
| Arm Ltd Valhall GPU Kernel Driver | >=r19p0<=r49p3>=r50p0<=r53p0 | |
| Arm 5th Gen GPU Architecture Kernel Driver | >=r41p0<=r49p3>=r50p0<=r53p0 |
Remedy
This issue has been fixed in the following versions: Bifrost GPU Kernel Driver r49p4; Valhall GPU Kernel Driver r49p4 and r54p0; Arm 5th Gen GPU Architecture Kernel Driver r49p4 and r54p0. Arm recommends that affected users upgrade to the latest applicable version at Mali Driver Downloads to protect against this issue.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-0427?
CVE-2025-0427 has been rated as a high-severity vulnerability allowing potential exploitation of freed memory in GPU drivers.
How do I fix CVE-2025-0427?
To mitigate CVE-2025-0427, users should update to the latest versions of the affected GPU kernel drivers provided by Arm Ltd.
What software is affected by CVE-2025-0427?
CVE-2025-0427 affects multiple GPU drivers including Arm Ltd Bifrost, Valhall, and Arm 5th Gen GPU Kernel Drivers.
Can CVE-2025-0427 be exploited by remote attackers?
No, CVE-2025-0427 can only be exploited by local non-privileged user processes.
What types of attacks could CVE-2025-0427 enable?
CVE-2025-0427 could enable attackers to perform unauthorized actions by accessing already freed memory, leading to possible data corruption or privilege escalation.
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/title
- agent/references
- agent/type
- agent/description
- agent/remedy
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/author
- agent/source
- agent/tags
- agent/event
- vendor/arm ltd
- canonical/arm bifrost gpu kernel driver
- canonical/arm ltd valhall gpu kernel driver
- canonical/arm 5th gen gpu architecture kernel driver