CVE-2026-22164— GPU DDK - Kernel heap OOB write in DevmemIntComputeVirtualIndicesFromLogical
Possible ATT&CK Techniques 2AI
T1203 · Exploitation for Client Execution T1068 · Exploitation for Privilege EscalationAffected Version Matrix 5
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Imagination Technologies | Graphics DDK | 1.18 RTM | unaffected |
23.2 RTM | unaffected | ||
24.2 RTM | affected | ||
25.1 RTM≤ 25.3 RTM | affected | ||
26.1 RTM | affected |
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-22164
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
GPU DDK - Kernel heap OOB write in DevmemIntComputeVirtualIndicesFromLogical
Source: NVD (National Vulnerability Database)
Vulnerability Description
Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt kernel heap memory. By creating resources of certain types and presenting a set of parameters to the affected interface the exploit can be used to corrupt kernel memory.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
堆缓冲区溢出
Source: NVD (National Vulnerability Database)
Vulnerability Title
Imagination Graphics DDK 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Imagination Graphics DDK是英国Imagination公司的一款GPU驱动工具套件。 Imagination Graphics DDK存在安全漏洞,该漏洞源于非特权用户安装和运行的软件可能执行不当的GPU系统调用,从而破坏内核堆内存。通过创建特定类型的资源并向受影响接口提供一组参数,该漏洞可用于破坏内核内存。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Imagination Technologies | Graphics DDK | 1.18 RTM | - |
II. Public POCs for CVE-2026-22164
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-22164
请登录查看更多情报信息。
News Coverage for CVE-2026-22164 (1)
IV. Related Vulnerabilities
Same product: Graphics DDK
- CVE-2026-41158
GPU DDK - Backed sparse PMRs are not handled by deferred fre - CVE-2026-41157
GPU DDK - OOB Write in CalculateNPOTTwiddleSparsePageMap3D - CVE-2026-41155
GPU DDK - SharedSecMem mapped into all GPU virtual address s - CVE-2026-34195
GPU DDK - Kernel heap OOB write in PMRChangeSparseMemOSMem d - CVE-2026-34194
GPU DDK - UAF read and/or write to arbitrary physical pages
Same vendor: Imagination Technologies
- CVE-2026-41158
GPU DDK - Backed sparse PMRs are not handled by deferred fre - CVE-2026-41157
GPU DDK - OOB Write in CalculateNPOTTwiddleSparsePageMap3D - CVE-2026-41155
GPU DDK - SharedSecMem mapped into all GPU virtual address s - CVE-2026-34195
GPU DDK - Kernel heap OOB write in PMRChangeSparseMemOSMem d - CVE-2026-34194
GPU DDK - UAF read and/or write to arbitrary physical pages
Same weakness: CWE-122
V. Comments for CVE-2026-22164
No comments yet