Home

Description

Software installed and run as a non-privileged user may cause OOB kernel memory reads or writes through GPU API calls. When indexing pages larger than 4kB in the page freeing logic of the sparse memory implementation, incorrect buffer indexing leads to OOB access.

PUBLISHED Reserved 2026-04-17 | Published 2026-07-10 | Updated 2026-07-13 | Assigner imaginationtech

Problem types

CWE-787: Out-of-bounds Write

Product status

Default status
unknown

1.18 RTM2 (custom)
unaffected

23.2 RTM2 (custom)
unaffected

24.2 RTM2 (custom)
affected

25.1 RTM2 (custom)
affected

26.1 RTM1 (custom)
affected

26.1 RTM2 (custom)
unaffected

References

www.imaginationtech.com/gpu-driver-vulnerabilities/

cve.org (CVE-2026-41154)

nvd.nist.gov (CVE-2026-41154)

Download JSON