Home » Serious security vulnerabilities exposed in multiple Arm processors, Linux emergency push fix solution
GearBest

Serious security vulnerabilities exposed in multiple Arm processors, Linux emergency push fix solution

Sophia Windsor Sophia Windsor June 22, 2026 18362

[ Gearbest Technology News]Arm recently disclosed a serious security vulnerability numbered CVE-2025-10263, which involves a large number of processor cores in multiple product lines such as servers, data centers, and mobile terminals. At the same time, the Linux community has quickly rolled out fixes to help reduce the risk of the vulnerability being exploited.

ARM
ARM

According to public information, the problem occurs when the processor performs a TLB invalidation (TLBI) operation. Under certain circumstances, the relevant memory access will not be strictly synchronized after the TLBI operation is completed, which may cause code that does not have permission to write to high-privilege resources. Security researchers believe that this abnormal behavior may be used for local privilege escalation attacks, so the vulnerability is classified as critical.

Judging from the scope of the impact, Arm's latest C1-Ultra, C1-Premium, and Neoverse V3, V3AE, V2, V1, N2, N1 and other cores for the server market are all affected. At the same time, a number of processor cores widely used in mobile devices and high-performance terminals have also been included in the list, including Cortex-X925, Cortex-X4, Cortex-X3, Cortex-X2, Cortex-X1, Cortex-A710, Cortex-A78, Cortex-A77 and Cortex-A76 models.

In response to this problem, Arm recommends that system software add an additional TLBI operation when performing related TLB invalidation operations, and cooperate with DSB data synchronization barriers to ensure that all related memory accesses have been completed correctly before permission changes. Linux kernel developers have submitted corresponding patches to the mainline kernel to implement the above mitigation measures by adjusting critical code paths.

It is worth noting that in addition to the products officially listed by Arm, NVIDIA has also confirmed that its Olympus core is also affected by the vulnerability and has submitted corresponding fixes to the Linux community to maintain consistency with upstream patches.

Related Articles

Gearbest Blog provides tech news, professional product reviews, how-tos, firmware downloads and more.

We are here to provide an answer to all of your questions (FAQ) and help you choose what you really need. Click, register and download firmwares, operating instructions, user guides and more. Follow what’s new in Gearbest!

Subscribe to our list

For customers

For vendors

Translate »
Gearbest
Logo
Compare items
  • Total (0)
Compare
0