CVE-2024-12576 GPU DDK - Untrusted app can crash firmware by forcing MCU access to non-aligned address

🗓️ 07 Mar 2025 07:36:21Reported by imaginationtechType

Untrusted apps can crash GPU firmware by forcing access to non-aligned addresses, freezing output.

Reporter	Title	Published	Views	Family All 10
Android Security Bulletins	Android Security Bulletin—June 2025Stay organized with collectionsSave and categorize content based on your preferences.	2 Jun 202500:00	–	androidsecurity
Circl	CVE-2024-12576	7 Mar 202508:35	–	circl
CNNVD	Imagination GPU Driver 安全漏洞	7 Mar 202500:00	–	cnnvd
CVE	CVE-2024-12576	7 Mar 202507:36	–	cve
EUVD	EUVD-2024-54146	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Google Android and Samsung Mobile	10 Jun 202507:19	–	ncsc
NVD	CVE-2024-12576	7 Mar 202508:15	–	nvd
OSV	ASB-A-384017663	1 Jun 202500:00	–	osv
RedhatCVE	CVE-2024-12576	9 Mar 202507:53	–	redhatcve
Vulnrichment	CVE-2024-12576 GPU DDK - Untrusted app can crash firmware by forcing MCU access to non-aligned address	7 Mar 202507:36	–	vulnrichment

[
  {
    "defaultStatus": "unknown",
    "platforms": [
      "Linux",
      "Android"
    ],
    "product": "Graphics DDK",
    "vendor": "Imagination Technologies",
    "versions": [
      {
        "lessThanOrEqual": "24.3 RTM",
        "status": "affected",
        "version": "1.15 RTM",
        "versionType": "custom"
      },
      {
        "status": "unaffected",
        "version": "25.1 RTM",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
imaginationtech	www.imaginationtech.com/gpu-driver-vulnerabilities/

07 Mar 2025 07:36Current

EPSS0.00136

CWE-822