Primary

Context

Arm Mali GPU Kernel Drivers Infinite Loop Vulnerability Leading to Denial-of-Service

Vulnerability

A vulnerability allowing an infinite loop condition has been identified in the Arm Mali GPU Kernel Drivers, specifically in the Bifrost, Valhall, and 5th Gen GPU Architecture drivers. This vulnerability allows a non-privileged user process to perform valid GPU memory operations, potentially through WebGL or WebGPU, causing the entire system to become unresponsive. The issue is present in Bifrost GPU Kernel Driver versions r44p1, r46p0 through r49p0, and r50p0 through r51p0; Valhall GPU Kernel Driver versions r44p1, r46p0 through r49p0, and r50p0 through r51p0; and Arm 5th Gen GPU Architecture Kernel Driver versions r44p1, r46p0 through r49p0, and r50p0 through r51p0.

Impact

Exploitation of this vulnerability leads to a system-wide denial-of-service condition, causing the system to become unresponsive.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

3.3

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

3.3

exploitability

4.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Arm Mali GPU Kernel Drivers Infinite Loop Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Affected Products

Arm Bifrost GPU Kernel Driver

Arm Valhall GPU Kernel Driver

Arm 5th Gen GPU Architecture Kernel Driver

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating