Out-of-Bounds Write Vulnerability in GPU Shader Compiler from Imagination Technologies
CVE-2026-21734

Currently unrated

Key Information:

Vendor: Imagination Technologies
Status: Graphics Ddk
Vendor: CVE Published:; 26 June 2026

🔔 Create Imagination Technologies Vulnerability Alert

What is CVE-2026-21734?

This vulnerability in the GPU shader compiler library allows for an out-of-bounds write crash triggered by unusual GPU shader code. When loaded into the GPU compiler process, specific edge cases involving very small values can cause a segmentation fault. On certain platforms where the compiler operates with elevated system privileges, this poses a risk for further exploits, potentially compromising the device's integrity.

Affected Version(s)

Graphics DDK Linux 1.18 RTM

Graphics DDK Linux 23.2 RTM

Graphics DDK Linux 24.1 RTM <= 24.2 RTM

References

https://www.imaginationtech.com/gpu-driver-vulnerabilities/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2026
Vulnerability Reserved
Jan 5, 2026

CVE-2026-21734 Data

JSON