CVE-2026-41158

HIGH

GPU DDK - Backed sparse PMRs are not handled by deferred free mechanism after shrink

Title source: cna

Description

Software installed and run as a non-privileged user may conduct GPU system calls to write to arbitrary freed physical pages. Physical memory allocated and freed, without the deferred free mechanism can lead to those resources being used for read/write by the GPU after the kernel module has freed the resource.

References (1)

Core 1

Core References

https://www.imaginationtech.com/gpu-driver-vulnerabilities/

Scores

CVSS v3 7.8

EPSS 0.0015

EPSS Percentile 4.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-416

Status published

Products (6)

Imagination Technologies/Graphics DDK 1.18 RTM

Imagination Technologies/Graphics DDK 23.2 RTM

Imagination Technologies/Graphics DDK 24.2 RTM

Imagination Technologies/Graphics DDK 25.1 RTM - 25.3 RTM

Imagination Technologies/Graphics DDK 26.1 RTM

Imagination Technologies/Graphics DDK 26.2 RTM

Published Jun 12, 2026

Tracked Since Jun 13, 2026