CVE-2026-53293 - Vulnerability Details

- drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG

Description

In the Linux kernel, the following vulnerability has been resolved:

drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG

There were multiple issues in that code.

First of all the order between the reset semaphore and the mm_lock was
wrong (e.g. copy_to_user) was called while holding the lock.

Then we allocated memory while holding the reset semaphore which is also
a pretty big bug and can deadlock.

Then we used down_read_trylock() instead of waiting for the reset to
finish.

(cherry picked from commit 361b6e6b303d4b691f6c5974d3eaab67ca6dd90e)

Published: 2026-06-26

Score: n/a

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`8361e3f7882876d98ba98cae0d3149450dd80912`	affected	< 8c4254c8f5836e77ae83e7fc037f02b69f7a0977
`9e823f307074c0f82b5f6044943b0086e3079bed`	affected	< 61957c2e467b39b528a290016367d32a433fa846
`9e823f307074c0f82b5f6044943b0086e3079bed`	affected	< a31c3feb54b15a90232e497ad0e27e8a82052d8d
`9e823f307074c0f82b5f6044943b0086e3079bed`	affected	< 5c29d20470d4566d1b68df57097d642d01f8b427
`9e823f307074c0f82b5f6044943b0086e3079bed`	affected	< 0ef196a208385b7d7da79f411c161b04e97283e2
`17a98c942cb106ec08564e8f43b5470a4dd5d3f6`	affected	—
`9a98563345697bdb1d3410ff428473b2e781f4db`	affected	—
`6.6.55`	affected	< 6.6.141
`6.10.14`	affected	< 6.11
`6.11.3`	affected	< 6.12

Linux

affected

Version	Status	Constraints
`6.12`	affected	—
`0`	unaffected	< 6.12
`6.6.141`	unaffected	≤ 6.6.*
`6.12.91`	unaffected	≤ 6.12.*
`6.18.33`	unaffected	≤ 6.18.*
`7.0.10`	unaffected	≤ 7.0.*
`7.1`	unaffected	≤ *

No data.

Vendor Product Confidence Versions

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`[8361e3f7882876d98ba98cae0d3149450dd80912,8c4254c8f5836e77ae83e7fc037f02b69f7a0977)`	affected	code_commit	—
`[9e823f307074c0f82b5f6044943b0086e3079bed,61957c2e467b39b528a290016367d32a433fa846)`	affected	code_commit	—
`[9e823f307074c0f82b5f6044943b0086e3079bed,a31c3feb54b15a90232e497ad0e27e8a82052d8d)`	affected	code_commit	—
`[9e823f307074c0f82b5f6044943b0086e3079bed,5c29d20470d4566d1b68df57097d642d01f8b427)`	affected	code_commit	—
`[9e823f307074c0f82b5f6044943b0086e3079bed,0ef196a208385b7d7da79f411c161b04e97283e2)`	affected	code_commit	—
`17a98c942cb106ec08564e8f43b5470a4dd5d3f6`	affected	code_commit	—
`9a98563345697bdb1d3410ff428473b2e781f4db`	affected	code_commit	—
`[6.6.55,6.6.141)`	affected	semver	—
`[6.10.14,6.11)`	affected	generic	—
`[6.11.3,6.12)`	affected	generic	—

Linux

Linux Kernel

99%

Version	Status	Scheme	Platform
`6.12`	affected	generic	—
`[0,6.12)`	unaffected	generic	—
`[6.6.141,6.7.0)`	unaffected	semver	—
`[6.12.91,6.13.0)`	unaffected	semver	—
`[6.18.33,6.19.0)`	unaffected	semver	—
`[7.0.10,7.1.0)`	unaffected	semver	—
`[7.1,*]`	unaffected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00168.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/0ef196a208385b7d7da79f411c161b04e97283e2
https://git.kernel.org/stable/c/5c29d20470d4566d1b68df57097d642d01f8b427
https://git.kernel.org/stable/c/61957c2e467b39b528a290016367d32a433fa846
https://git.kernel.org/stable/c/8c4254c8f5836e77ae83e7fc037f02b69f7a0977
https://git.kernel.org/stable/c/a31c3feb54b15a90232e497ad0e27e8a82052d8d

History

Fri, 26 Jun 2026 22:45:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-362 CWE-754

Fri, 26 Jun 2026 20:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG There were multiple issues in that code. First of all the order between the reset semaphore and the mm_lock was wrong (e.g. copy_to_user) was called while holding the lock. Then we allocated memory while holding the reset semaphore which is also a pretty big bug and can deadlock. Then we used down_read_trylock() instead of waiting for the reset to finish. (cherry picked from commit 361b6e6b303d4b691f6c5974d3eaab67ca6dd90e)
Title		drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/0ef196a208385b7d7da79f411c161b04e97283e2 https://git.kernel.org/stable/c/5c29d20470d4566d1b68df57097d642d01f8b427 https://git.kernel.org/stable/c/61957c2e467b39b528a290016367d32a433fa846 https://git.kernel.org/stable/c/8c4254c8f5836e77ae83e7fc037f02b69f7a0977 https://git.kernel.org/stable/c/a31c3feb54b15a90232e497ad0e27e8a82052d8d

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-06-26T19:40:52.132Z

Updated: 2026-06-26T19:40:52.132Z

Reserved: 2026-06-09T07:44:35.396Z

Link: CVE-2026-53293

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-27T04:15:10Z

Weaknesses

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object