CVE-2026-41157

Name of the Vulnerable Software and Affected Versions Imagination Graphics DDK (affected versions not specified)

Description A web page containing unusual WebGPU content loaded into the GPU GLES render process can trigger an out-of-bound write in the GPU user-space driver. This occurs because the software computes the required memory size from untrusted input, but an integer overflow—where a numeric value exceeds its maximum storage capacity—can produce a value smaller than needed. Subsequent write operations may then occur past the intended memory boundary, leading to memory corruption and possible browser or GPU process crashes.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.