Volerion logoVolerion
Volerion logoVolerion

Imagination Technologies GPU Driver Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in the Imagination Technologies GPU driver. This issue arises when software, executed by a non-privileged user, makes improper GPU system calls. These erroneous calls can crash the firmware running on the GPU, leading to a freeze in graphics output. The vulnerability is present in DDK releases up to and including 24.3.

Impact

Exploitation of this vulnerability causes a crash of the GPU firmware, freezing the graphics output.

Reproduction

The vulnerability can be reproduced by running software as a non-privileged user that makes improper GPU system calls. This can be done by exploiting certain kernel functions that do not properly manage memory or synchronization, leading to a crash of the GPU firmware.

Remediation

The DDK kernel module has been updated to address this vulnerability by preventing non-aligned memory accesses that could disrupt GPU operation.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
2.5
exploitability
5.0
remediation
7.7
relevance
0.0
threat
1.6
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.