CVE-2025-0015

Name of the Vulnerable Software and Affected Versions Valhall GPU Kernel Driver versions r48p0 through r49p1, versions r50p0 through r52p0 Arm 5th Gen GPU Architecture Kernel Driver versions r48p0 through r49p1, versions r50p0 through r52p0

Description The issue allows a local non-privileged user process to make improper GPU processing operations to gain access to already freed memory. This is a Use After Free vulnerability in the kernel driver of Arm Ltd's Valhall GPU and the kernel driver of Arm's 5th Gen GPU Architecture.

Recommendations For Valhall GPU Kernel Driver versions r48p0 through r49p1 and versions r50p0 through r52p0, consider disabling the vulnerable kernel driver functionality until a patch is available. For Arm 5th Gen GPU Architecture Kernel Driver versions r48p0 through r49p1 and versions r50p0 through r52p0, restrict access to the kernel driver to minimize the risk of exploitation. As a temporary workaround, avoid using the affected GPU processing operations in the vulnerable kernel drivers until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.