CVE-2026-41158

Severity CVSS v4.0:

Pending analysis

Type:

CWE-416 Use After Free

Publication date:

12/06/2026

Last modified:

12/06/2026

Description

Software installed and run as a non-privileged user may conduct GPU system calls to write to arbitrary freed physical pages.<br /> <br /> <br /> <br /> Physical memory allocated and freed, without the deferred free mechanism can lead to those resources being used for read/write by the GPU after the kernel module has freed the resource.

Impact

References to Advisories, Solutions, and Tools

https://www.imaginationtech.com/gpu-driver-vulnerabilities/