Use After Free Vulnerability in Arm Ltd Bifrost and Valhall GPU Kernel Drivers
CVE-2025-3212

5.3MEDIUM

Key Information:

Vendor: Arm
Status: Bifrost Gpu Kernel Driver; Valhall Gpu Kernel Driver; Arm 5th Gen Gpu Architecture Kernel Driver
Vendor: CVE Published:; 8 September 2025

What is CVE-2025-3212?

This vulnerability allows a local non-privileged user process to exploit a use after free condition within the Bifrost and Valhall GPU kernel drivers. It enables attackers to perform valid memory processing operations on GPU resources that have already been freed. As a result, unauthorized access to sensitive memory regions can occur, posing significant risks for system integrity and data safety.

Affected Version(s)

Arm 5th Gen GPU Architecture Kernel Driver r41p0

Arm 5th Gen GPU Architecture Kernel Driver r50p0

Bifrost GPU Kernel Driver r41p0

References

https://developer.arm.com/documentation/110627/latest

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 8, 2025
Vulnerability Reserved
Apr 3, 2025