CVE-2026-52950

UNKNOWN 0.0

drm/xe/dma-buf: fix UAF with retry loop

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: drm/xe/dma-buf: fix UAF with retry loop Retry doesn't work here, since bo will be freed on error, leading to UAF. However, now that we do the alloc & init before the attach, we can now combine this as one unit and have the init do the alloc for us. This should make the retry safe. Reported by Sashiko. v2: Fix up the error unwind (CI) (cherry picked from commit 479669418253e0f27f8cf5db01a731352ea592e7)

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Jun 24, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

eb289a5f6cc668853f9b2ea6aca04afe58ed11c7 < 39fdac6be02eb7c3460518c1c4085f75f935c4ce eb289a5f6cc668853f9b2ea6aca04afe58ed11c7 < 827062952ed9bdf4220466c1f05ce452d04bdedf eb289a5f6cc668853f9b2ea6aca04afe58ed11c7 < 155a372a1cc50fa93387c5d3cdfd614a61e1afd1

Linux / Linux

6.18

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/39fdac6be02eb7c3460518c1c4085f75f935c4ce git.kernel.org: https://git.kernel.org/stable/c/827062952ed9bdf4220466c1f05ce452d04bdedf git.kernel.org: https://git.kernel.org/stable/c/155a372a1cc50fa93387c5d3cdfd614a61e1afd1