CVE-2026-53347

medium

Description

In the Linux kernel, the following vulnerability has been resolved: drm/virtio: Fix driver removal with disabled KMS DRM atomic and modesetting aren't initialized if virtio-gpu driver built with disabled KMS, leading to access of uninitialized data on driver removal/unbinding and crashing kernel. Fix it by skipping shutting down atomic core with unavailable KMS.

References

https://git.kernel.org/stable/c/f329e8325e054bd6d84d10904f8dd51137281b92

https://git.kernel.org/stable/c/ed3e134700a2e07caa99b9bc0683ebbe0327c562

https://git.kernel.org/stable/c/38a5f891cda6d121c149c94cda89c31ec7024ee3

https://git.kernel.org/stable/c/19a6a00ff50c284f3a9818882ad2be58b33b790a

https://git.kernel.org/stable/c/15e561869a8b4e4db69733be1d6f33770664f989

Details

Source: Mitre, NVD

Published: 2026-07-01

Updated: 2026-07-01

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium