Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Graphics DDK — Vulnerabilities & Security Advisories 56

All 56 CVE vulnerabilities found in Graphics DDK, with AI-generated Chinese analysis, references, and POCs.

Vendor: Imagination Technologies

CVE IDTitleCVSSSeverityPublished
CVE-2026-21733 RESERVED 7.1AIHighAI2026-04-17
CVE-2026-22163 GPU DDK - Unsafe writing of MMU PT entries on systems with 32-bit host CPU CWE-820 8.4 -2026-03-20
CVE-2026-21732 GPU DDK - libusc OOB write at ConvertSwitchToArrayLookupBP during WebGPU shader compilation CWE-823 8.1 -2026-03-20
CVE-2026-21736 GPU DDK - Insufficient permission check in PhysmemWrapExtMem() when write attribute support enabled CWE-280 7.1AIHighAI2026-03-09
CVE-2025-13952 GPU DDK - libusc UAF via WebGPU shaders at MergeConsecutiveBarriersBP CWE-416 9.8 -2026-01-24
CVE-2025-10865 GPU DDK - DevmemIntGetReservationData does not ref the PMR it returns CWE-416 7.8AIHighAI2026-01-13
CVE-2025-58411 GPU DDK - Reservation::psMappedPMR can change while used by a freelist -> UAF CWE-416 7.8AIHighAI2026-01-13
CVE-2025-58409 GPU DDK - Disguised freelist buffers passed to RGXCreateHWRTDataSet can cause arbitrary physical memory writes corrupting memory CWE-119 7.8AIHighAI2026-01-13
CVE-2025-25176 GPU DDK - GPU Register value contents leaked from secure workloads to non-secure world CWE-668 8.1AIHighAI2026-01-13
CVE-2025-58408 GPU DDK - KASAN Read UAF in the PVRSRVBridgeRGXSubmitTransfer2 due to improper error handling code CWE-416 5.5AIMediumAI2025-12-01
CVE-2025-58407 GPU DDK - TOCTOU bug affecting psFWMemContext->uiPageCatBaseRegSet CWE-367 7.8AIHighAI2025-11-17
CVE-2025-58410 GPU DDK - Multiple calls into PhysmemGEMPrimeExport can inherit write access permission for an existing read-only dma_buf import PMR CWE-280 7.8AIHighAI2025-11-17
CVE-2025-46711 GPU DDK - NULL Pointer dereference occurs in LockHandle on bridge entry when connection misused CWE-476 5.5AIMediumAI2025-09-22
CVE-2025-25177 GPU DDK - Roll-back of pvr_exp_fence not in finalised state can cause UAF CWE-416 7.8AIHighAI2025-09-22
CVE-2025-46709 GPU DDK - Security fix for PP-171570 can lead to an uninitialised pointer dereference and memory leak CWE-416 7.1 -2025-08-08
CVE-2025-6573 GPU DDK - RGXFW_CTL.pui8FWScratchBuf Leak/Overwrite CWE-280 5.5 -2025-08-08
CVE-2025-8109 GPU DDK - GPU shader shared memory corrupted using ptrace to disrupt GPU operation CWE-280 7.1AIHighAI2025-08-04
CVE-2025-25180 GPU DDK - Insufficient validation in RGXCREATEFREELIST creates corrupt freelist CWE-823 5.5AIMediumAI2025-07-14
CVE-2025-46708 GPU DDK - Guest VM can delay the FW and GPU from processing workloads from other VMs CWE-280 5.5AIMediumAI2025-06-27
CVE-2025-46707 GPU DDK - Guest VM can override its own FW VZ connection state after the FW has close it CWE-668 7.8AIHighAI2025-06-27
CVE-2025-46710 Imagination GPU Driver 安全漏洞 CWE-416 7.8AIHighAI2025-06-16
CVE-2025-25179 GPU DDK - Freelist GPU VA can be remapped to another reservation/PMR to trigger GPU arbitrary write to physical memory CWE-280 7.8AIHighAI2025-06-02
CVE-2024-47893 GPU DDK - OOB read and write of the shared KMD/FW memory heap (VZ/TEE setups) CWE-823 8.4AIHighAI2025-05-17
CVE-2025-1706 GPU DDK - Improper locking when accessing the pvr_exp_fence object CWE-416 7.8AIHighAI2025-05-17
CVE-2025-0467 GPU DDK - rgxfw_hwperf_get_packet_buffer OOB write CWE-823 7.8 -2025-04-18
CVE-2025-25178 GPU DDK - PhysmemWrapExtMem uiSize=0 corrupts kernel memory CWE-1284 7.8AIHighAI2025-04-04
CVE-2025-0468 GPU DDK - ui64RobustnessAddress can overwrite Freelist / HWRT (and bypass PMMETA) CWE-280 5.5AIMediumAI2025-04-04
CVE-2025-0835 GPU DDK - _WrapExtMemReleasePages called twice if _FlushUMVirtualRange fails CWE-416 7.8AIHighAI2025-03-24
CVE-2025-0478 GPU DDK - PMMETA_PROTECT PMR can be exported as dma-buf file / GEM object CWE-280 5.5AIMediumAI2025-03-24
CVE-2024-12837 GPU DDK - Exploitable kernel double free on apsFenceSyncCheckpoints allocated with arbitrary size CWE-416 7.8 -2025-03-07

All 56 known CVE vulnerabilities affecting Graphics DDK with full Chinese analysis, references, and POCs where available.