Arm has disclosed several security vulnerabilities affecting various versions of its Mali GPU Kernel and Firmware drivers.
These vulnerabilities, reported under multiple CVEs, could allow local non-privileged users to perform improper GPU operations, potentially leading to unauthorized memory access, system crashes, or exposure of sensitive data.
Affected GPU architectures include Midgard, Bifrost, Valhall, and the Arm 5th Gen GPU Architecture.
Improper GPU Processing and Memory Handling Issues
One of the most critical issues is identified as CVE-2025-0015, which impacts the Valhall and Arm 5th Gen GPU Kernel drivers (versions r48p0–r52p0).
This vulnerability allows improper GPU processing operations that could give attackers access to already freed memory.
Similarly, CVE-2024-6790 affects multiple architectures and can cause the entire system to become unresponsive due to improper memory operations initiated via WebGL or WebGPU.
Both issues have been resolved in updated driver versions (r49p2 and r53p0 for CVE-2025-0015; r49p1 and r52p0 for CVE-2024-6790).
Exploitation Risks
Several vulnerabilities involve improper handling of GPU memory, such as CVE-2024-3655 and CVE-2024-2937.
These flaws allow attackers to gain access to freed memory by exploiting race conditions or performing out-of-bounds memory operations.
Another significant vulnerability, CVE-2024-0153, affects Valhall Firmware (r29p0–r46p0) and Arm 5th Gen Firmware (r41p0–r46p0), enabling attackers to access system memory by carefully preparing buffer operations.
Arm has also acknowledged reports of active exploitation for certain vulnerabilities, including CVE-2024-4610 and CVE-2023-4211.
These issues highlight the importance of prompt updates to mitigate potential risks.
Arm has released patches addressing these vulnerabilities across various driver versions.
Users are strongly advised to upgrade their GPU drivers to the latest secure versions available on the Mali Driver Downloads page.
For instance:
- CVE-2025-0015 is resolved in Valhall and 5th Gen drivers r49p2 and r53p0.
- CVE-2024-6790 is fixed in Bifrost r49p1 and Valhall/5th Gen drivers r52p0.
- Firmware issues like CVE-2024-0153 are addressed in firmware version r47p0.
For older architectures such as Midgard GPUs, affected users should contact Arm support for guidance on updates.
These vulnerabilities underscore the critical need for regular software updates in maintaining system security.
Arm continues to work closely with security researchers to address these issues promptly. Users are encouraged to monitor Arm’s security advisories for future updates and disclosures.
