EUVD-2026-38819

🗓️ 24 Jun 2026 18:32:41Reported by EUVDType

Fix a race in the Linux kernel drm xe dma-buf by delaying attach until the buffer object is fully initialized, preventing null pointer and use-after-free during evict and invalidate mappings.

Reporter	Title	Published	Views	Family All 6
ATTACKERKB	CVE-2026-52951	24 Jun 202616:28	–	attackerkb
CVE	CVE-2026-52951	24 Jun 202616:28	–	cve
Cvelist	CVE-2026-52951 drm/xe/dma-buf: handle empty bo and UAF races	24 Jun 202616:28	–	cvelist
Debian CVE	CVE-2026-52951	24 Jun 202616:28	–	debiancve
NVD	CVE-2026-52951	24 Jun 202617:17	–	nvd
Positive Technologies	PT-2026-51845	24 Jun 202600:00	–	ptsecurity

[
  {
    "enisaIdVendor": [
      {
        "id": "aa2c7ba2-5cc2-372c-a458-d3e58e0d266f",
        "vendor": {
          "name": "Linux"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "33f51679-39ec-3e0d-a0ce-119ac6b4abdc",
        "product": {
          "name": "Linux",
          "vendor": {
            "name": "Linux"
          }
        },
        "product_version": "patch: 6.18.33"
      },
      {
        "id": "3af59f1e-69f5-3f4b-97b8-afab698d62b8",
        "product": {
          "name": "Linux",
          "vendor": {
            "name": "Linux"
          }
        },
        "product_version": "patch: 7.1"
      },
      {
        "id": "8a2ed218-f68c-3ad9-8ede-f599308ff177",
        "product": {
          "name": "Linux",
          "vendor": {
            "name": "Linux"
          }
        },
        "product_version": "dd08ebf6c3525a7ea2186e636df064ea47281987 <20a99ea1e2fd720856d6ba497ff26b82c604751f"
      },
      {
        "id": "9603a682-0fea-35b0-82ca-0be79737d187",
        "product": {
          "name": "Linux",
          "vendor": {
            "name": "Linux"
          }
        },
        "product_version": "patch: 6.12.91"
      },
      {
        "id": "b2d30679-ef21-3d6f-aebb-dec5717057f1",
        "product": {
          "name": "Linux",
          "vendor": {
            "name": "Linux"
          }
        },
        "product_version": "dd08ebf6c3525a7ea2186e636df064ea47281987 <9894731e513019df22a29e5c52f1c98890355ff1"
      },
      {
        "id": "c38bd153-df15-341c-8a42-84734fc1c2e5",
        "product": {
          "name": "Linux",
          "vendor": {
            "name": "Linux"
          }
        },
        "product_version": "patch: 7.0.10"
      },
      {
        "id": "d0c0552e-23b9-353f-a3b2-dfc406f7a1ac",
        "product": {
          "name": "Linux",
          "vendor": {
            "name": "Linux"
          }
        },
        "product_version": "6.8"
      },
      {
        "id": "e340b333-84f5-3072-adae-3c7c14ced9b9",
        "product": {
          "name": "Linux",
          "vendor": {
            "name": "Linux"
          }
        },
        "product_version": "patch: 0"
      },
      {
        "id": "f79f55bf-d06f-3d10-9ec9-18924547c2a9",
        "product": {
          "name": "Linux",
          "vendor": {
            "name": "Linux"
          }
        },
        "product_version": "dd08ebf6c3525a7ea2186e636df064ea47281987 <c473ae25421fddc3dde247ba7b85225b10641d09"
      },
      {
        "id": "ff700a58-7e2c-32e9-a08a-edc25dadded1",
        "product": {
          "name": "Linux",
          "vendor": {
            "name": "Linux"
          }
        },
        "product_version": "dd08ebf6c3525a7ea2186e636df064ea47281987 <981bedbbe61364fcc3a3b87ebaf648a66cd07108"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/9894731e513019df22a29e5c52f1c98890355ff1
git	www.git.kernel.org/stable/c/20a99ea1e2fd720856d6ba497ff26b82c604751f
git	www.git.kernel.org/stable/c/c473ae25421fddc3dde247ba7b85225b10641d09
git	www.git.kernel.org/stable/c/981bedbbe61364fcc3a3b87ebaf648a66cd07108
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-52951

24 Jun 2026 18:32Current

6Medium risk

Vulners AI Score6