Build a Fake Phone, Find Real Bugs: Qualcomm GPU Emulation and Fuzzing with LibAFL QEMU

This is the hub repository for the talk presented during 39C3. I'll upload here the slides and the various links to the related projects.

Links to projects mentioned during the talk

• Qualcomm GPU patches for QEMU: QEMU patches to get Qualcomm GPU support
• LibAFL QEMU: LibAFL QEMU main crate
• qemu-libafl-bridge: The official QEMU fork of LibAFL
• fdtviz: Create graphviz visualizations from a DTB blob
• libvharness: Build your own harnesses for embedded and kernel fuzzing. Cross-architecture support
• linux-qemu-image-builder: Automatic building of fully-featured and minimal Linux images for fuzzing

CVE details

• The CVE has been made public: https://nvd.nist.gov/vuln/detail/CVE-2025-47397
• The patch is available there: https://git.codelinaro.org/clo/la/platform/vendor/qcom/opensource/graphics-kernel/-/commit/fe0beb00472c2b4d8da3f1fc8b2b54ab51c71342