CVE-2026-53280
Received Received - Intake
NULL Domain Dereference in Linux Kernel IOMMU

Publication date: 2026-06-26

Last updated on: 2026-06-26

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: iommu: Fix NULL group->domain dereference in pci_dev_reset_iommu_done() Local sashiko review pointed it out that group->domain could be NULL when a default domain fails to allocate during the first probe, which can crash at domain->ops->attach_dev dereference in __iommu_attach_device() invoked by pci_dev_reset_iommu_done(). pci_dev_reset_iommu_prepare() is fine as an old_domain pointer can be NULL. Skip the re-attach in pci_dev_reset_iommu_done() to fix the bug.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-26
Last Modified
2026-06-26
Generated
2026-06-27
AI Q&A
2026-06-26
EPSS Evaluated
N/A
NVD
CVE-2026-53280
EUVD
EUVD-2026-39885
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Linux kernel's IOMMU subsystem. Specifically, it involves a NULL pointer dereference issue in the function pci_dev_reset_iommu_done().

The problem occurs because the group->domain pointer can be NULL if a default domain fails to allocate during the first probe. When this happens, the kernel attempts to dereference domain->ops->attach_dev in the __iommu_attach_device() function, which leads to a crash.

The fix involves skipping the re-attachment step in pci_dev_reset_iommu_done() when the domain pointer is NULL, preventing the crash.

Impact Analysis

This vulnerability can cause the Linux kernel to crash due to a NULL pointer dereference in the IOMMU reset process. Such a crash can lead to system instability or denial of service.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53280. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart