Use After Free Vulnerability in Imagination Technologies GPU Driver
CVE-2026-7639

Currently unrated

Key Information:

Vendor
CVE Published:
10 July 2026

What is CVE-2026-7639?

A security vulnerability exists in Imagination Technologies GPU Driver that permits a sequence of improper GPU system calls by software running as a non-privileged user. This flaw can result in a use after free condition, enabling unauthorized memory access via shader code. The vulnerability allows malicious code to trigger issues in the MMU mapping logic, which may lead to incomplete cleanup of the driver's internal state, creating opportunities for unprivileged access to sensitive physical memory contents.

Affected Version(s)

Graphics DDK Linux 1.18 RTM2

Graphics DDK Linux 23.2 RTM2

Graphics DDK Linux 24.2 RTM2

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.