CVE-2025-46709Use After Free in Azl3 Kernel 6.6.47.1-1 ON Azure Linux 3.0

CWE-416Use After Free3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.1%
top 79.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Imagination Technologies Graphics DDKImaginationtech DDKMsrc Azl3 Kernel 6.6.47.1-1 ON Azure Linux 3.0+3 more
Timeline
PublishedAug 9

Description

Possible memory leak or kernel exceptions caused by reading kernel heap data after free or NULL pointer dereference kernel exception.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages6 packages

NVDimaginationtech/ddk1.1725.1
CVEListV5imagination_technologies/graphics_ddk23.2 RTM25.1 RTM1+3

🔴Vulnerability Details

1
GHSA
GHSA-g442-cv6p-6f3m: Possible memory leak or kernel exceptions caused by reading kernel heap data after free or NULL pointer dereference kernel exception2025-08-09

📋Vendor Advisories

1
Microsoft
drm/vmwgfx: Fix prime with external buffers2024-09-10