Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-53293— drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG

AI Predicted 7.8 Difficulty: Hard EPSS 0.17% · P6

Possible ATT&CK Techniques 1AI

T1059 · Command and Scripting Interpreter

Affected Version Matrix 17

VendorProductVersion RangeStatus
LinuxLinux8361e3f7882876d98ba98cae0d3149450dd80912< 8c4254c8f5836e77ae83e7fc037f02b69f7a0977affected
9e823f307074c0f82b5f6044943b0086e3079bed< 61957c2e467b39b528a290016367d32a433fa846affected
9e823f307074c0f82b5f6044943b0086e3079bed< a31c3feb54b15a90232e497ad0e27e8a82052d8daffected
9e823f307074c0f82b5f6044943b0086e3079bed< 5c29d20470d4566d1b68df57097d642d01f8b427affected
9e823f307074c0f82b5f6044943b0086e3079bed< 0ef196a208385b7d7da79f411c161b04e97283e2affected
17a98c942cb106ec08564e8f43b5470a4dd5d3f6affected
9a98563345697bdb1d3410ff428473b2e781f4dbaffected
6.6.55< 6.6.141affected
… +9 more rows
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-53293

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG There were multiple issues in that code. First of all the order between the reset semaphore and the mm_lock was wrong (e.g. copy_to_user) was called while holding the lock. Then we allocated memory while holding the reset semaphore which is also a pretty big bug and can deadlock. Then we used down_read_trylock() instead of waiting for the reset to finish. (cherry picked from commit 361b6e6b303d4b691f6c5974d3eaab67ca6dd90e)
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux kernel 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会开源的操作系统Linux所使用的内核。 Linux kernel 6.12版本存在安全漏洞,该漏洞源于AMDGPU_INFO_READ_MMR_REG代码中存在多个问题包括重置信号量和mm_lock之间的顺序错误、在持有重置信号量时分配内存可能导致死锁以及使用down_read_trylock()而非等待重置完成。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
LinuxLinux 8361e3f7882876d98ba98cae0d3149450dd80912 ~ 8c4254c8f5836e77ae83e7fc037f02b69f7a0977 -
LinuxLinux 6.12 -

II. Public POCs for CVE-2026-53293

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-53293

登录查看更多情报信息。

Patches & Fixes for CVE-2026-53293 (5)

Same Patch Batch · Linux · 2026-06-26 · 47 CVEs total

CVE-2026-533099.8 CRITICALocfs2/dlm: fix off-by-one in dlm_match_regions() region comparison
CVE-2026-533228.8 HIGHvfio/pci: Clean up DMABUFs before disabling function
CVE-2026-532818.8 HIGHiommu/vt-d: Avoid NULL pointer dereference or refcount corruption
CVE-2026-533007.8 HIGHnet: enetc: fix NTMP DMA use-after-free issue
CVE-2026-532907.8 HIGHdrm/xe/eustall: Fix drm_dev_put called before stream disable in close
CVE-2026-532847.5 HIGHbtrfs: only release the dirty pages io tree after successful writes
CVE-2026-53278arm_mpam: Check whether the config array is allocated before destroying it
CVE-2026-53289ice: fix NULL pointer dereference in ice_reset_all_vfs()
CVE-2026-53283iommu/amd: Bounds-check devid in __rlookup_amd_iommu()
CVE-2026-53280iommu: Fix NULL group->domain dereference in pci_dev_reset_iommu_done()
CVE-2026-53282x86/kexec: Push kjump return address even for non-kjump kexec
CVE-2026-53279drm/gma500/oaktrail_lvds: fix hang on init failure
CVE-2026-53292net: phonet: do not BUG_ON() in pn_socket_autobind() on failed bind
CVE-2026-53291ALSA: hda/conexant: Fix missing error check for jack detection
CVE-2026-53294mailbox: mailbox-test: don't free the reused channel
CVE-2026-53295mailbox: add sanity check for channel array
CVE-2026-53296mailbox: mailbox-test: free channels on probe error
CVE-2026-53297net: mana: Guard mana_remove against double invocation
CVE-2026-53298net: airoha: Move ndesc initialization at end of airoha_qdma_init_rx_queue()
CVE-2026-53299net: airoha: Move ndesc initialization at end of airoha_qdma_init_tx()

Showing top 20 of 47 CVEs. View all on vendor page &rarr; →

IV. Related Vulnerabilities

V. Comments for CVE-2026-53293

No comments yet


Leave a comment