Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Graphics DDK — Vulnerabilities & Security Advisories 56

All 56 CVE vulnerabilities found in Graphics DDK, with AI-generated Chinese analysis, references, and POCs.

Vendor: Imagination Technologies

CVE IDTitleCVSSSeverityPublished
CVE-2024-12576 GPU DDK - Untrusted app can crash firmware by forcing MCU access to non-aligned address CWE-822 5.5 -2025-03-07
CVE-2024-12577 GPU DDK - rgxfw_pcset_ungrab OOB write via psFWMemContext->uiPageCatBaseRegSet CWE-823 7.8 -2025-02-22
CVE-2024-52939 GPU DDK - RGXFWIF_HWPERF_CTL_BLK.uiNumCounters OOB write CWE-823 7.8 -2025-02-22
CVE-2024-47896 GPU DDK - rgxfw_hwr_log_info OOB write via psHWRInfoBuf->ui32WriteIndex CWE-823 7.8 -2025-02-22
CVE-2024-46975 GPU DDK - rgxfw_write_robustness_buffer allows arbitrary catreg set mapping CWE-270 7.8 -2025-02-22
CVE-2024-47900 GPU DDK - Multiple integer overflow in DmaTransfer PMR_DevPhysAddr functions leading to OOB writes CWE-823 7.1 -2025-01-31
CVE-2024-47899 GPU DDK - PVRSRVDeviceServicesOpen use-after-free condition CWE-416 7.8 -2025-01-31
CVE-2024-47898 GPU DDK - PVRSRVDeviceSyncOpen use-after-free condition CWE-416 7.8 -2025-01-31
CVE-2024-47891 GPU DDK - Exploitable double free on PTL_STREAM_DESC object in the kernel function TLServerCloseStreamKM due to a race condition CWE-416 7.8 -2025-01-31
CVE-2024-46974 GPU DDK - Arbitrary write of read-only dmabuf CWE-266 7.8 -2025-01-31
CVE-2024-52938 GPU DDK - rgxfw_pm_add_freelist_for_reconstruction OOB write CWE-823 7.8 -2025-01-13
CVE-2024-52937 GPU DDK - rgxfw_kernel_CMD_DISABLE_ZSSTORE OOB write via ui32WriteOffsetOfDisableZSStore CWE-823 7.8 -2025-01-13
CVE-2024-52936 GPU DDK - rgxfw_hwperf_config OOB read & write CWE-823 7.8 -2025-01-13
CVE-2024-52935 GPU DDK - psContext->eDM gives OOB write CWE-823 7.8 -2025-01-13
CVE-2024-47895 GPU DDK - OOB read into fwlog due to unchecked block count CWE-823 5.5 -2025-01-13
CVE-2024-47894 GPU DDK - Out of bounds read into fwlog due to unchecked loop bounds CWE-823 5.5 -2025-01-13
CVE-2024-47897 GPU DDK - PVRSRVRGXGetEnabledHWPerfBlocksKM off-by-one OOB write CWE-787 5.5 -2025-01-13
CVE-2024-43705 GPU DDK - Security: Exploitable PVRSRVBridgePhysmemWrapExtMem may lead to overwrite read-only file/memory (e.g. libc.so) CWE-280 7.1 -2024-12-28
CVE-2024-46973 Exploitable kernel use-after-free on psServerMMUContext due to reference count mismanagement CWE-416 7.8 -2024-12-28
CVE-2024-46972 GPU DDK - Security: Reference count overflow in pvr_sync_rollback_export_fence CWE-911 7.8 -2024-12-28
CVE-2024-47892 GPU DDK - UAF of kernel memory in PMRUnlockPhysAddressesOSMem for on-demand non-4KB PMRs in system memory (UMA) CWE-416 7.8 -2024-12-13
CVE-2024-46971 GPU DDK - UAF of memory in PMRUnlockSysPhysAddressesLocalMem for on-demand PMRs on PCI (LMA) systems CWE-416 7.8 -2024-12-13
CVE-2024-43703 GPU DDK - Duplicate calls to RGXCreateFreeList on the same reservation leads to GPU UAF CWE-416 7.8 -2024-11-30
CVE-2024-43702 GPU DDK - MLIST/PM render state buffers writable allowing arbitrary writes to kernel memory pages CWE-280 7.8 -2024-11-30
CVE-2024-43704 GPU DDK - PowerVR: PVRSRVAcquireProcessHandleBase can cause psProcessHandleBase reuse when PIDs are reused CWE-668 7.1AIHighAI2024-11-18
CVE-2024-43701 GPU DDK - PowerVR: TLB invalidate UAF of dma_buf imported into multiple GPU devices CWE-416 7.8AIHighAI2024-10-14

All 56 known CVE vulnerabilities affecting Graphics DDK with full Chinese analysis, references, and POCs where available.