High severity7.8NVD Advisory· Published Jun 2, 2025· Updated Jun 17, 2026
CVE-2025-1246
CVE-2025-1246
Description
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to perform valid GPU processing operations, including via WebGL or WebGPU, to access outside of buffer bounds.This issue affects Bifrost GPU Userspace Driver: from r18p0 through r49p3, from r50p0 through r51p0; Valhall GPU Userspace Driver: from r28p0 through r49p3, from r50p0 through r54p0; Arm 5th Gen GPU Architecture Userspace Driver: from r41p0 through r49p3, from r50p0 through r54p0.
Affected products
5r41p0-r49p3, r50p0-r54p0+ 1 more
- (no CPE)range: r41p0-r49p3, r50p0-r54p0
- (no CPE)range: r41p0
r18p0-r49p3, r50p0-r51p0+ 2 more
- (no CPE)range: r18p0-r49p3, r50p0-r51p0
- (no CPE)range: r18p0
- (no CPE)range: r28p0
Patches
Vulnerability mechanics
References
1- developer.arm.com/documentation/110466/latest/nvdVendor Advisory
News mentions
0No linked articles in our index yet.