CVE-2026-23466

EPSS 0.02%
Veröffentlicht 03.04.2026 15:15:45
Zuletzt bearbeitet 27.04.2026 14:16:34
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

drm/xe: Open-code GGTT MMIO access protection

In the Linux kernel, the following vulnerability has been resolved:

drm/xe: Open-code GGTT MMIO access protection

GGTT MMIO access is currently protected by hotplug (drm_dev_enter),
which works correctly when the driver loads successfully and is later
unbound or unloaded. However, if driver load fails, this protection is
insufficient because drm_dev_unplug() is never called.

Additionally, devm release functions cannot guarantee that all BOs with
GGTT mappings are destroyed before the GGTT MMIO region is removed, as
some BOs may be freed asynchronously by worker threads.

To address this, introduce an open-coded flag, protected by the GGTT
lock, that guards GGTT MMIO access. The flag is cleared during the
dev_fini_ggtt devm release function to ensure MMIO access is disabled
once teardown begins.

(cherry picked from commit 4f3a998a173b4325c2efd90bdadc6ccd3ad9a431)

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

CNA 2 VulnDex Vulnerability Enrichment 5

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 919bb54e989c1edef87e9797be125c94c450fc65

Version < e2b424aadecb640f9e037b2891191cf8fd4c64cf

Status affected

Version 919bb54e989c1edef87e9797be125c94c450fc65

Version < 1e9e2640d870d4837bcfdc220cb2c99ae5ee119f

Status affected

Version 919bb54e989c1edef87e9797be125c94c450fc65

Version < 76326dc06d8793c2c81c31cc0115dbc348de2f88

Status affected

Version 919bb54e989c1edef87e9797be125c94c450fc65

Version < 01f2557aa684e514005541e71a3d01f4cd45c170

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.12

Status affected

Version 0

Version < 6.12

Status unaffected

Version <= 6.12.*

Version 6.12.78

Status unaffected

Version <= 6.18.*

Version 6.18.20

Status unaffected

Version <= 6.19.*

Version 6.19.10

Status unaffected

Version <= *

Version 7.0

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.034

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
416baaa9-dc9f-4396-8d5f-8c081fb06d67	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/e2b424aadecb640f9e037b2891191cf8fd4c64cf

https://git.kernel.org/stable/c/1e9e2640d870d4837bcfdc220cb2c99ae5ee119f

https://git.kernel.org/stable/c/76326dc06d8793c2c81c31cc0115dbc348de2f88

https://git.kernel.org/stable/c/01f2557aa684e514005541e71a3d01f4cd45c170

https://nvd.nist.gov/vuln/detail/CVE-2026-23466

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-23466

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-23466

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-23466