CVE-2026-53279 - Vulnerability Details

Description

In the Linux kernel, the following vulnerability has been resolved:

drm/gma500/oaktrail_lvds: fix hang on init failure

The LVDS init code looks up an I2C adapter using i2c_get_adapter() and
tries to read the EDID before falling back to allocating and registering
its own adapter.

The error handling does not separate these cases so on a late init
failure it will try to deregister and free also an adapter that had
previously been registered. Since i2c_get_adapter() takes another
reference to the adapter, deregistration hangs indefinitely while
waiting for the reference to be released.

Fix this by only destroying adapters allocated during LVDS init on
errors.

Published: 2026-06-26

Score: n/a

EPSS: n/a

KEV: No

Impact:

Action:

Analysis

Impact

The Linux kernel DRM driver for GMA500 Oaktrail LVDS contains a flaw that causes a system hang when the driver initialization fails. The init routine obtains an I2C adapter via i2c_get_adapter and, on failure, attempts to deregister that adapter, but the code does not distinguish between adapters acquired from the system and ones created locally. This can result in a deadlock where the kernel waits indefinitely for a reference count to drop, effectively freezing the entire operating system and denying all services.

Affected Systems

The vulnerability affects any Linux kernel that includes the gma500 oaktrail_lvds driver. It is inferred that all kernel builds containing this driver, whether built‑in or loaded as a module, are susceptible. The advisory does not specify particular kernel version ranges, so any kernel tree with the vulnerable code is potentially at risk.

Risk and Exploitability

The flaw is a local denial‑of‑service that depends on the driver initialization path being triggered. The likely attack vector is a low‑privileged user manipulating the display environment in a way that forces the driver to fail during initialization, such as by tampering with EDID data or disconnecting the monitor during system boot. The EPSS score is not available and the vulnerability is not listed in the CISA KEV catalog. No CVSS score is produced, but the impact of a complete system freeze means this issue warrants urgent attention.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`a57ebfc0b4da16a3f36bfebb158198aab3e340f8`	affected	< 5fe9f505d8578852c30668567bc3ce52e776e8c7
`a57ebfc0b4da16a3f36bfebb158198aab3e340f8`	affected	< 4e04b564c005c9900643c56656d751ad677889be
`a57ebfc0b4da16a3f36bfebb158198aab3e340f8`	affected	< 7877f7e231a8bd5c817af1491276550a5e195cd7
`a57ebfc0b4da16a3f36bfebb158198aab3e340f8`	affected	< ab9256936b58eb178caddcf5b5b1638f079909d2
`a57ebfc0b4da16a3f36bfebb158198aab3e340f8`	affected	< f6fc44af3bbd5ab0fb6bdec6f47decca11b38425
`a57ebfc0b4da16a3f36bfebb158198aab3e340f8`	affected	< 657a091ab6d01d0091b77660c75cfed573c9a53e

Linux

affected

Version	Status	Constraints
`6.0`	affected	—
`0`	unaffected	< 6.0
`6.1.175`	unaffected	≤ 6.1.*
`6.6.141`	unaffected	≤ 6.6.*
`6.12.91`	unaffected	≤ 6.12.*
`6.18.33`	unaffected	≤ 6.18.*
`7.0.10`	unaffected	≤ 7.0.*
`7.1`	unaffected	≤ *

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Upgrade the kernel to a version that includes the fix for the oaktrail_lvds initialization error
Blacklist or unload the oaktrail_lvds DRM module to prevent the driver from loading
Disable the GMA500 Oaktrail LVDS hardware in the system BIOS to avoid driver initialization

Generated by OpenCVE AI on June 26, 2026 at 22:32 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/4e04b564c005c9900643c56656d751ad677889be
https://git.kernel.org/stable/c/5fe9f505d8578852c30668567bc3ce52e776e8c7
https://git.kernel.org/stable/c/657a091ab6d01d0091b77660c75cfed573c9a53e
https://git.kernel.org/stable/c/7877f7e231a8bd5c817af1491276550a5e195cd7
https://git.kernel.org/stable/c/ab9256936b58eb178caddcf5b5b1638f079909d2
https://git.kernel.org/stable/c/f6fc44af3bbd5ab0fb6bdec6f47decca11b38425

History

Fri, 26 Jun 2026 23:00:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-676 CWE-753

Fri, 26 Jun 2026 20:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: drm/gma500/oaktrail_lvds: fix hang on init failure The LVDS init code looks up an I2C adapter using i2c_get_adapter() and tries to read the EDID before falling back to allocating and registering its own adapter. The error handling does not separate these cases so on a late init failure it will try to deregister and free also an adapter that had previously been registered. Since i2c_get_adapter() takes another reference to the adapter, deregistration hangs indefinitely while waiting for the reference to be released. Fix this by only destroying adapters allocated during LVDS init on errors.
Title		drm/gma500/oaktrail_lvds: fix hang on init failure
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/4e04b564c005c9900643c56656d751ad677889be https://git.kernel.org/stable/c/5fe9f505d8578852c30668567bc3ce52e776e8c7 https://git.kernel.org/stable/c/657a091ab6d01d0091b77660c75cfed573c9a53e https://git.kernel.org/stable/c/7877f7e231a8bd5c817af1491276550a5e195cd7 https://git.kernel.org/stable/c/ab9256936b58eb178caddcf5b5b1638f079909d2 https://git.kernel.org/stable/c/f6fc44af3bbd5ab0fb6bdec6f47decca11b38425

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-06-26T19:40:41.489Z

Updated: 2026-06-26T19:40:41.489Z

Reserved: 2026-06-09T07:44:35.395Z

Link: CVE-2026-53279

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-26T22:45:05Z

Weaknesses

CWE-676
Use of Potentially Dangerous Function
CWE-753

Impact

Affected Systems

Risk and Exploitability

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object