What is the severity of CVE-2025-0015?

CVE-2025-0015 is considered a medium severity vulnerability due to its potential impact on system security.

How do I fix CVE-2025-0015?

To fix CVE-2025-0015, update the Arm Ltd Valhall and Arm 5th Gen GPU Kernel Drivers to versions beyond r52p1 or below r48p0.

Who is affected by CVE-2025-0015?

CVE-2025-0015 affects local non-privileged user processes running on systems using Arm Ltd Valhall and Arm 5th Gen GPU Kernel Drivers.

What kind of vulnerability is CVE-2025-0015?

CVE-2025-0015 is a Use After Free vulnerability that allows improper GPU processing operations.

What systems are vulnerable to CVE-2025-0015?

Systems running the Arm Ltd Valhall GPU Kernel Driver and Arm 5th Gen GPU Architecture Kernel Driver within specified version ranges are vulnerable to CVE-2025-0015.

Vulnerability/
CVE-2025-0015

high

7.8

CWE

416

3/2/2025

CVE-2025-0015: Mali GPU Kernel Driver allows improper GPU processing operations

First published: Mon Feb 03 2025(Updated: )

Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to make improper GPU processing operations to gain access to already freed memory.This issue affects Valhall GPU Kernel Driver: from r48p0 through r49p1, from r50p0 through r52p0; Arm 5th Gen GPU Architecture Kernel Driver: from r48p0 through r49p1, from r50p0 through r52p0.

Credit: arm-security@arm.com

Affected Software	Affected Version	How to fix
Arm Ltd Valhall GPU Kernel Driver	>=r48p0<r49p2>=r50p0<r52p1
Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver	>=r48p0<r49p2>=r50p0<r52p1

Remedy

This issue is fixed in the Valhall and Arm 5th Gen GPU Architecture Kernel Driver r49p2 and r53p0. Users are recommended to upgrade if they are impacted by this issue.

Never miss a vulnerability like this again

Reference Links

https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

Frequently Asked Questions

What is the severity of CVE-2025-0015?
CVE-2025-0015 is considered a medium severity vulnerability due to its potential impact on system security.
How do I fix CVE-2025-0015?
To fix CVE-2025-0015, update the Arm Ltd Valhall and Arm 5th Gen GPU Kernel Drivers to versions beyond r52p1 or below r48p0.
Who is affected by CVE-2025-0015?
CVE-2025-0015 affects local non-privileged user processes running on systems using Arm Ltd Valhall and Arm 5th Gen GPU Kernel Drivers.
What kind of vulnerability is CVE-2025-0015?
CVE-2025-0015 is a Use After Free vulnerability that allows improper GPU processing operations.
What systems are vulnerable to CVE-2025-0015?
Systems running the Arm Ltd Valhall GPU Kernel Driver and Arm 5th Gen GPU Architecture Kernel Driver within specified version ranges are vulnerable to CVE-2025-0015.

collector/mitre-cve
source/MITRE
agent/weakness
agent/title
agent/remedy
agent/references
agent/type
agent/description
agent/first-publish-date
agent/guess-ai
agent/software-canonical-lookup
agent/softwarecombine
collector/nvd-api
source/NVD
agent/severity
agent/last-modified-date
agent/author
agent/source
agent/tags
agent/event
vendor/arm ltd
canonical/arm ltd valhall gpu kernel driver
canonical/arm ltd arm 5th gen gpu architecture kernel driver

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.