CVE-2026-53114
Received Received - Intake
perf/amd/ibs NMI Handler Permission Bypass

Publication date: 2026-06-24

Last updated on: 2026-06-24

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: perf/amd/ibs: Avoid calling perf_allow_kernel() from the IBS NMI handler Calling perf_allow_kernel() from the NMI context is unsafe and could be fatal. Capture the permission at event-initialization time by storing it in event->hw.flags, and have the NMI handler rely on that cached flag instead of making the call directly.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-24
Last Modified
2026-06-24
Generated
2026-06-25
AI Q&A
2026-06-24
EPSS Evaluated
N/A
NVD
CVE-2026-53114
EUVD
EUVD-2026-38982
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Linux kernel's perf subsystem, specifically in the AMD IBS (Instruction Based Sampling) component. The issue arises because the function perf_allow_kernel() is called from within the NMI (Non-Maskable Interrupt) handler context, which is unsafe and could potentially cause fatal errors.

The fix involves capturing the permission at the event initialization time by storing it in a cached flag (event->hw.flags), so that the NMI handler can rely on this cached flag instead of calling perf_allow_kernel() directly during the NMI context.

Impact Analysis

Because calling perf_allow_kernel() from the NMI context is unsafe, this vulnerability could lead to fatal errors or crashes in the Linux kernel when the perf subsystem is used with AMD IBS. This could result in system instability or unexpected kernel panics.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53114. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart