CVE-2025-52532: Race Condition in AMD MxGPU-Virtualization Driver
CVE-2025-52532 Published on May 15, 2026
A race condition in the MxGPU-Virtualization drivers ioctl path caused by concurrent unsynchronized access to the global variable amdgv_cmd in an unlocked ioctl handler could be exploited by an attacker to trigger a heap-based buffer overflow, potentially resulting in denial-of-service within the vulnerable system context.
Weakness Type
What is a TOCTTOU Vulnerability?
The software checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the software to perform invalid actions when the resource is in an unexpected state. This weakness can be security-relevant when an attacker can influence the state of the resource between check and use. This can happen with shared resources such as files, memory, or even variables in multithreaded programs.
CVE-2025-52532 has been classified to as a TOCTTOU vulnerability or weakness.
Affected Versions
AMD Radeon™ PRO V620:- Version Contact your AMD Customer Engineering representative is unaffected.
- Version Contact your AMD Customer Engineering representative is unaffected.
- Version GIM Driver 8.4 is unaffected.
- Version GIM Driver 8.4 is unaffected.
- Version GIM Driver 8.4 is unaffected.
- Version GIM Driver 8.4 is unaffected.
- Version GIM Driver 8.4 is unaffected.
- Version GIM Driver 8.4 is unaffected.