CVE Catalog

CVE-2026-53293

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.10%

1th percentile — higher than 1% of all known CVEs

Summary

In the Linux kernel, multiple bugs were found in the amdgpu driver's AMDGPU_INFO_READ_MMR_REG function. Issues include incorrect lock ordering (reset semaphore and mm_lock), memory allocation while holding the reset semaphore, and using down_read_trylock() instead of waiting for reset completion.

Risk Assessment

This vulnerability could lead to system deadlocks or incorrect MMR register reads, potentially allowing a local attacker to destabilize the kernel or leak sensitive information.

Recommendation

Immediately update the Linux kernel to a version containing commit 361b6e6b303d (or later) and apply the relevant security patches provided by your distribution.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG There were multiple issues in that code. First of all the order between the reset semaphore and the mm_lock was wrong (e.g. copy_to_user) was called while holding the lock. Then we allocated memory while holding the reset semaphore which is also a pretty big bug and can deadlock. Then we used down_read_trylock() instead of waiting for the reset to finish. (cherry picked from commit 361b6e6b303d4b691f6c5974d3eaab67ca6dd90e)

Vulnerability data from NVD (NIST) · CISA KEV · EPSS