CVE-2026-34195 | THREATINT

Description

Software installed and run as a non-privileged user may conduct intentional GPU sparse memory API calls to cause out of bounds write in the kernel. The product incorrectly indexes internal state when performing sparse allocation remapping.

PUBLISHED Reserved 2026-03-26 | Published 2026-06-12 | Updated 2026-06-15 | Assigner imaginationtech

Problem types

CWE-787: Out-of-bounds Write

Product status

Default status

unknown

1.18 RTM (custom)

unaffected

23.2 RTM (custom)

unaffected

24.2 RTM (custom)

affected

25.1 RTM (custom)

affected

26.1 RTM (custom)

unaffected

26.2 RTM (custom)

unaffected

References

www.imaginationtech.com/gpu-driver-vulnerabilities/

cve.org (CVE-2026-34195)

nvd.nist.gov (CVE-2026-34195)

Download JSON