CVE-2025-46710Use After Free in Azl3 Kernel 6.6.57.1-1 ON Azure Linux 3.0

CWE-416Use After Free4 documents4 sources
Severity
5.7MEDIUMNVD
EPSS
0.1%
top 68.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
Imaginationtech DDKImagination Technologies Graphics DDKGoogle Android+4 more
Timeline
PublishedJun 16
Latest updateSep 1

Description

Possible kernel exceptions caused by reading and writing kernel heap data after free.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:HExploitability: 0.9 | Impact: 4.7

Affected Packages7 packages

NVDimaginationtech/ddk1.1524.2+1
CVEListV5imagination_technologies/graphics_ddk1.15 RTM24.2 RTM2

🔴Vulnerability Details

1
GHSA
GHSA-c4f5-m2cr-r6m5: Possible kernel exceptions caused by reading and writing kernel heap data after free2025-06-16

📋Vendor Advisories

2
Android
CVE-2025-46710: PowerVR-GPU2025-09-01
Microsoft
drm/vmwgfx: Prevent unmapping active read buffers2024-09-10