PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-53143 Linux CVE debrief

CVE-2026-53143 is a HIGH severity vulnerability in the Linux kernel, specifically in the drm/amdkfd component. A buffer overflow occurs in SDMA queue checkpoint/restore on GFX11, allowing for potential memory corruption and information disclosure. The vulnerability has a CVSS score of 7. The issue arises from a copy-paste regression unique to v11, where the CP-compute variants of checkpoint_mqd/restore_mqd were incorrectly assigned for KFD_MQD_TYPE_SDMA queues. This results in a 1536-byte overflow when reading or writing to a 512-byte SDMA MQD buffer.

Vendor
Linux
Product
Unknown
CVSS
HIGH 7
CISA KEV
Not listed in stored evidence
Original CVE published
2026-06-25
Original CVE updated
2026-06-30
Advisory published
2026-06-25
Advisory updated
2026-06-30

Who should care

Linux kernel users and administrators, particularly those using GFX11-based systems, should be aware of this vulnerability. The vulnerability can be exploited locally, and its HIGH severity score indicates a significant risk. Users of affected systems should prioritize patching to prevent potential memory corruption and information disclosure.

Technical summary

The vulnerability is caused by a copy-paste error in the v11 MQD manager, which incorrectly assigned the CP-compute variants of checkpoint_mqd/restore_mqd for KFD_MQD_TYPE_SDMA queues. These functions use sizeof(struct v11_compute_mqd) (2048 bytes) instead of sizeof(struct v11_sdma_mqd) (512 bytes), leading to a 1536-byte overflow. During checkpoint, this allows 1536 bytes of adjacent GTT memory to be leaked to userspace. During restore, it can corrupt 1536 bytes of adjacent GTT memory, potentially affecting the ring buffer or neighboring MQDs.

Defensive priority

This vulnerability should be prioritized for patching due to its HIGH severity score and potential for memory corruption and information disclosure. Linux kernel users and administrators should apply patches as soon as possible to prevent exploitation.

Recommended defensive actions

  • Apply the official patch from the Linux kernel repository.
  • Review and update Linux kernel configurations to ensure the fix is applied.
  • Monitor system logs for potential exploitation attempts.
  • Perform regular vulnerability assessments to identify affected systems.
  • Consider implementing additional security controls, such as memory protection mechanisms.

Evidence notes

The CVE-2026-53143 vulnerability was introduced in the Linux kernel and affects the drm/amdkfd component. The vulnerability has a CVSS score of 7 and is classified as HIGH severity. The issue is caused by a copy-paste regression unique to v11, and the fix involves adding checkpoint_mqd_sdma() and restore_mqd_sdma() functions to properly handle the smaller v11_sdma_mqd structure.

Official resources

This article is AI-assisted and based on the supplied source corpus.