CVE-2025-6349
published 2025-12-01CVE-2025-6349: Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user…
PriorityP425medium5.1CVSS 3.1
AVLACLPRNUINSUCLILAN
EPSS
0.15%
4.9th percentile
Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform improper GPU memory processing operations to gain access to already freed memory.This issue affects Valhall GPU Kernel Driver: from r53p0 through r54p1; Arm 5th Gen GPU Architecture Kernel Driver: from r53p0 through r54p1.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arm | 5th_gen_gpu_architecture_kernel_driver | >= r53p0 < r54p2 | r54p2 |
| arm | valhall_gpu_kernel_driver | >= r53p0 < r54p2 | r54p2 |
| arm_ltd | arm_5th_gen_gpu_architecture_kernel_driver | r53p0 – r54p1 | — |
| arm_ltd | valhall_gpu_kernel_driver | r53p0 – r54p1 | — |
| android | — | — | |
| chrome_chrome | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Chrome
Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2025-6349
vendor_chrome·2026-01-27·CVSS 5.1
CVE-2025-6349 [MEDIUM] Stable Channel Update for ChromeOS / ChromeOS Flex: CVE-2025-6349
Stable Channel Update for ChromeOS / ChromeOS Flex
CVE-2025-6349
Android
CVE-2025-6349: Mali
vendor_android·2025-12-01·CVSS 5.1
CVE-2025-6349 [MEDIUM] CVE-2025-6349: Mali
Android Security Bulletin 2025-12-01
CVE: CVE-2025-6349
Severity: HIGH
Component: Mali
References: A-428702264*
GHSA
GHSA-962p-4p89-4946: Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged us
ghsa_unreviewed·2025-12-01
CVE-2025-6349 [MEDIUM] CWE-416 GHSA-962p-4p89-4946: Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged us
Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform improper GPU memory processing operations to gain access to already freed memory.This issue affects Valhall GPU Kernel Driver: from r53p0 through r54p1; Arm 5th Gen GPU Architecture Kernel Driver: from r53p0 through r54p1.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-12-01
Published