CVE-2025-0932

MEDIUM 4.3

Mali GPU Userspace Driver allows access to already freed memory

CVSS Score

4.3

EPSS Score

0.0%

EPSS Percentile

0th

Use After Free vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to perform valid GPU processing operations, including via WebGL or WebGPU, to gain access to already freed memory.This issue affects Bifrost GPU Userspace Driver: from r48p0 through r49p3, from r50p0 through r51p0; Valhall GPU Userspace Driver: from r48p0 through r49p3, from r50p0 through r54p0; Arm 5th Gen GPU Architecture Userspace Driver: from r48p0 through r49p3, from r50p0 through r54p0.

CWE	CWE-416
Vendor	arm ltd
Product	bifrost gpu userspace driver
Published	Aug 4, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for arm ltd bifrost gpu userspace driver

Be the first to know when new medium vulnerabilities affecting arm ltd bifrost gpu userspace driver are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Arm Ltd / Bifrost GPU Userspace Driver

r48p0 ≤ r49p3 r50p0 ≤ r51p0

Arm Ltd / Valhall GPU Userspace Driver

r48p0 ≤ r49p3 r50p0 ≤ r54p0

Arm Ltd / Arm 5th Gen GPU Architecture Userspace Driver

r48p0 ≤ r49p3 r50p0 ≤ r54p0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

developer.arm.com: https://developer.arm.com/documentation/110626/latest/

Credits

Lukas Bernhard