Description
In the Linux kernel, the following vulnerability has been resolved:

bus: fsl-mc: use generic driver_override infrastructure

When a driver is probed through __driver_attach(), the bus' match()
callback is called without the device lock held, thus accessing the
driver_override field without a lock, which can cause a UAF.

Fix this by using the driver-core driver_override infrastructure taking
care of proper locking internally.

Note that calling match() from __driver_attach() without the device lock
held is intentional. [1]
Published: 2026-06-24
Score: 5.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

During driver probing the fsl‑mc bus executes its match callback without holding the device lock, causing the driver_override field to be accessed unsafely. This race can lead to a use‑after‑free condition. If exploited, an attacker could corrupt kernel memory and potentially execute arbitrary code with kernel privileges. The weakness is a classic use‑after‑free vulnerability and also involves improper resource management (CWE‑413).

Affected Systems

All Linux kernel installations that include the fsl‑mc driver and have not been updated to the patched version. No specific kernel version ranges are listed in the advisory, so any kernel exposing this code path is potentially affected until a fix is applied.

Risk and Exploitability

The EPSS score indicates a very low exploitation probability (<1%), and the vulnerability is not listed in the CISA KEV catalog, indicating no published exploitation activity at the time of this analysis. The attack vector is likely to require local privilege or the ability to influence driver loading, as the flaw occurs during kernel driver attachment. The CVSS score of 5.5 indicates moderate severity, but the EPSS probability remains low, making the actual risk uncertain.

Generated by OpenCVE AI on June 26, 2026 at 04:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install a Linux kernel version that includes the fsl‑mc driver patch that applies the driver_core driver_override infrastructure, thereby restoring proper lock protection.
  • If kernel upgrade is not immediately possible, configure the system to prevent loading of the fsl‑mc module at boot – for example, add "fsl-mc" to /etc/modprobe.d/disable-modules.conf or use a kernel boot parameter to blacklist the driver.
  • Restrict kernel module loading to privileged users and enforce strict module signing to reduce the risk that an attacker can inject a malicious driver that might expose the use‑after‑free bug.

Generated by OpenCVE AI on June 26, 2026 at 04:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 03:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-366

Fri, 26 Jun 2026 00:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-413
References
Metrics threat_severity

None

cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Moderate


Wed, 24 Jun 2026 20:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-366

Wed, 24 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: use generic driver_override infrastructure When a driver is probed through __driver_attach(), the bus' match() callback is called without the device lock held, thus accessing the driver_override field without a lock, which can cause a UAF. Fix this by using the driver-core driver_override infrastructure taking care of proper locking internally. Note that calling match() from __driver_attach() without the device lock held is intentional. [1]
Title bus: fsl-mc: use generic driver_override infrastructure
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-24T16:30:47.330Z

Reserved: 2026-06-09T07:44:35.385Z

Link: CVE-2026-53115

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

Severity : Moderate

Publid Date: 2026-06-24T00:00:00Z

Links: CVE-2026-53115 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-26T04:30:17Z

Weaknesses
  • CWE-413

    Improper Resource Locking