GSD-2021-29256 — Vulnetix

GSD-2021-29256 PUBLISHED CVSS 8.800000190734863 HIGH

. The Arm Mali GPU kernel driver allows an unprivileged user to achieve access to freed memory, leading to information disclosure or root privilege escalation. This affects Bifrost r16p0 through r29p0 before r30p0, Valhall r19p0 through r29p0 before r30p0, and Midgard r28p0 through r30p0.

Risk Scores

CVSS v3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a

Timeline

May 24, 2021 CVE Published
Jul 7, 2023 PoC Published
Dec 24, 2024 PoC Published
Feb 23, 2025 PoC Published
Feb 2, 2026 PoC Published

References

https://developer.arm.com/support/arm-security-updates/mali-gpu-kernel-driver url
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-29256 url

Open in Interactive Console →