CVE-2025-0427 Mali GPU Kernel Driver allows access to already freed memory

Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform valid GPU processing operations to gain access to already freed memory.This issue affects...

CVE-2025-0072

The CVE-2025-0072 entries describe a Use After Free in ARM Valhall GPU Kernel Driver and ARM 5th Gen GPU Architecture Kernel Driver. The vulnerability arises from GPU memory paging and queue binding/unbind semantics in the kbase CSF path: a bound queue’s queue->phys pages can be overwritten by...

CVE-2025-0072 Mali GPU Kernel Driver allows improper GPU memory processing operations

Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform improper GPU memory processing operations to gain access to already freed memory. This issue affects Valhall GPU Kernel Drive...

PT-2025-18770 · Arm · Arm 5Th Gen Gpu Architecture Kernel Driver +2

Name of the Vulnerable Software and Affected Versions: Arm Ltd Bifrost GPU Kernel Driver versions r8p0 through r51p0 Arm Ltd Valhall GPU Kernel Driver versions r19p0 through r53p0 Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver versions r41p0 through r53p0 Description: The issue allows a local...

ARM Valhall GPU Kernel Driver和ARM 5th Gen GPU Architecture Kernel Driver 安全漏洞

ARM Valhall GPU Kernel Driver and ARM 5th Gen GPU Architecture Kernel Driver are both GPU kernel drivers from ARM UK. A security vulnerability exists in ARM Valhall GPU Kernel Driver and ARM 5th Gen GPU Architecture Kernel Driver, which stems from improper handling of GPU memory and could lead to...

Vulnerability of the hid_ctrl() function in the drivers/hid/usbhid/hid-core.c module – The driver for the user interface devices of the Linux kernel allows a hacker to compromise the confidentiality and accessibility of protected information.

Vulnerability of the hidctrl function in the drivers/hid/usbhid/hid-core.c module – The driver for the user interface devices in the Linux kernel is vulnerable to a memory leak before the last reference is freed. Exploiting this vulnerability could allow an attacker to compromise the...

Avast Free Antivirus Integer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Avast Free Antivirus. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the aswbidsdriv...

SUSE CVE-2021-47671

In the Linux kernel, the following vulnerability has been resolved: can: etases58x: es58xrxerrmsg: fix memory leak in error path In es58xrxerrmsg, if can-dosetmode fails, the function directly returns without calling netifrxskb. This means that the skb previously allocated by alloccanerrskb is no...

CVE-2025-32776

OpenRazer is an open source driver and user-space daemon to control Razer device lighting and other features on GNU/Linux. By writing specially crafted data to the matrixcustomframe file, an attacker can cause the custom kernel driver to read more bytes than provided by user space. This data will...

CVE-2025-32776 OpenRazer Vulnerable to Out of Bounds Read

OpenRazer is an open source driver and user-space daemon to control Razer device lighting and other features on GNU/Linux. By writing specially crafted data to the matrixcustomframe file, an attacker can cause the custom kernel driver to read more bytes than provided by user space. This data will...

Vulnerability of the mlx5_cmd_init() function in the drivers/net/ethernet/mellanox/mlx5/core/cmd.c file – This is a driver for supporting Mellanox Ethernet network adapters in Linux operating systems. It allows a hacker to cause a service failure.

Vulnerability of the mlx5cmdinit function in the drivers/net/ethernet/mellanox/mlx5/core/cmd.c file – The Mellanox Ethernet network adapter driver for Linux operating systems is vulnerable due to a reliance on the NULL pointer dereferencing mechanism. Exploiting this vulnerability could allow an...

Vulnerability of the amdgpu_get_xgmi_hive() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_xgmi.c module – A driver for supporting AMD GPU cores in Linux operating systems, which allows a hacker to cause a service failure

Vulnerability of the amdgpugetxgmihive function in the drivers/gpu/drm/amd/amdgpu/amdgpuxgmi.c module – The Linux kernel driver for AMD GPU Direct Rendering Infrastructure supports is related to improper disabling or release of resources. Exploiting this vulnerability can allow an attacker to cau...

Vulnerability of the ice_free_cpu_rx_rmap() function in the drivers/net/ethernet/intel/ice/ice_arfs.c module – a driver for supporting Ethernet network adapters in Linux kernel-based operating systems. This vulnerability allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the icefreecpurxrmap function in the drivers/net/ethernet/intel/ice/icearfs.c module – The Linux kernel-based Intel Ethernet network adapter driver relies on the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...

CVE-2025-0468

Software installed and run as a non-privileged user may conduct improper GPU system calls to subvert GPU HW to write to arbitrary physical memory pages. Under certain circumstances this exploit could be used to corrupt data pages not allocated by the GPU driver but memory pages in use by the kern...

CVE-2025-1865

The kernel driver, accessible to low-privileged users, exposes a function that fails to properly validate the privileges of the calling process. This allows creating files at arbitrary locations with full user control, ultimately allowing for privilege escalation to SYSTEM...

CVE-2025-1865 Local Privilege Escalation in Virtual CloneDrive Kernel Driver

The kernel driver, accessible to low-privileged users, exposes a function that fails to properly validate the privileges of the calling process. This allows creating files at arbitrary locations with full user control, ultimately allowing for privilege escalation to SYSTEM...

CVE-2025-1865 Local Privilege Escalation in Virtual CloneDrive Kernel Driver

The kernel driver, accessible to low-privileged users, exposes a function that fails to properly validate the privileges of the calling process. This allows creating files at arbitrary locations with full user control, ultimately allowing for privilege escalation to SYSTEM...

CVE-2025-1865

CVE-2025-1865 concerns a local privilege escalation in the Elby Virtual CloneDrive kernel driver. Documents consistently describe a function exposed to low-privileged users that fails to properly validate the privileges of the calling process, enabling creation of files at arbitrary locations wit...

Elby Virtual CloneDrive 访问控制错误漏洞

Elby Virtual CloneDrive is a virtual CD-ROM drive software from Elby that loads image files such as ISOs. An access control error vulnerability exists in Elby Virtual CloneDrive that stems from the kernel driver not properly validating calling process privileges, which could result in elevated...

PT-2025-14872 · Elaborate Bytes Ag · Virtual Clonedrive

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue concerns a kernel driver that is accessible to low-privileged users. This driver exposes a function that fails to properly validate the privileges of the calling process, allowing...