CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-0015: Mali GPU Kernel Driver allows improper GPU processing operations

Description

Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to make improper GPU processing operations to gain access to already freed memory.This issue affects Valhall GPU Kernel Driver: from r48p0 through r49p1, from r50p0 through r52p0; Arm 5th Gen GPU Architecture Kernel Driver: from r48p0 through r49p1, from r50p0 through r52p0.

Classification

CVE ID: CVE-2025-0015

Affected Products

Vendor: Arm Ltd

Product: Valhall GPU Kernel Driver

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.83% (scored less or equal to compared to others)

EPSS Date: 2025-03-04 (when was this score calculated)

References

https://developer.arm.com/Arm%20Security%20Center/Mali%20GPU%20Driver%20Vulnerabilities

Timeline

2025-02-04 01:18:20 UTC
CVE

Mali GPU Kernel Driver allows improper GPU processing operations