Kernel Vulnerability in Imagination Technologies' GPU Driver
CVE-2026-45203
Currently unrated
What is CVE-2026-45203?
A vulnerability exists in the GPU driver of Imagination Technologies, specifically in the handling of memory commands. Malicious software could exploit a time-of-check to time-of-use (TOCTOU) flaw, allowing alterations to memory values after the driver's firmware validation has occurred, but before those values are used by the host kernel. This can lead to unauthorized memory writes, posing a risk to the integrity and stability of the system. Prompt attention and remediation are necessary to protect systems utilizing affected versions of the driver.
Affected Version(s)
Graphics DDK Linux 1.18 RTM2
Graphics DDK Linux 23.2 RTM2
Graphics DDK Linux 24.2 RTM2
