CVE-2025-0015 — Use After Free in ARM 5TH GEN GPU Architecture Kernel Driver

CWE-416 — Use After Free4 documents4 sources

Severity

7.8HIGHNVD

EPSS

0.1%

top 67.37%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

ARM 5TH GEN GPU Architecture Kernel Driver ARM Valhall GPU Kernel Driver ARM LTD ARM 5TH GEN GPU Architecture Kernel Driver +2 more

Timeline

PublishedFeb 3

Latest updateDec 29

Description

Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to make improper GPU processing operations to gain access to already freed memory.This issue affects Valhall GPU Kernel Driver: from r48p0 through r49p1, from r50p0 through r52p0; Arm 5th Gen GPU Architecture Kernel Driver: from r48p0 through r49p1, from r50p0 through r52p0.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages5 packages

▶NVDarm/valhall_gpu_kernel_driverr48p0 — r49p2+1

▶NVDarm/5th_gen_gpu_architecture_kernel_driverr48p0 — r49p2+1

▶CVEListV5arm_ltd/valhall_gpu_kernel_driverr48p0 — r49p1+1

▶CVEListV5arm_ltd/arm_5th_gen_gpu_architecture_kernel_driverr48p0 — r49p1+1

▶googlegoogle/android

🔴Vulnerability Details

GHSA

GHSA-qfc2-wxrw-h7h2: Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged us↗2025-02-03

▶

📋Vendor Advisories

Android

CVE-2025-0015: Mali↗2025-02-01

▶

📄Research Papers

arXiv

Multi-Agent Framework for Threat Mitigation and Resilience in AI-Based Systems↗2025-12-29

▶