CVE-2026-53315
Received Received - Intake
NULL Pointer Dereference in Linux Kernel AMD RAS

Publication date: 2026-06-26

Last updated on: 2026-06-26

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: drm/amd/ras: Fix NULL deref in ras_core_get_utc_second_timestamp() ras_core_get_utc_second_timestamp() retrieves the current UTC timestamp (in seconds since the Unix epoch) through a platform-specific RAS system callback and is used for timestamping RAS error events. The function checks ras_core in the conditional statement before calling the sys_fn callback. However, when the condition fails, the function prints an error message using ras_core->dev. If ras_core is NULL, this can lead to a potential NULL pointer dereference when accessing ras_core->dev. Add an early NULL check for ras_core at the beginning of the function and return 0 when the pointer is not valid. This prevents the dereference and makes the control flow clearer.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-26
Last Modified
2026-06-26
Generated
2026-06-27
AI Q&A
2026-06-26
EPSS Evaluated
N/A
NVD
CVE-2026-53315
EUVD
EUVD-2026-39850
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the Linux kernel's drm/amd/ras component, specifically in the function ras_core_get_utc_second_timestamp(). The function is designed to retrieve the current UTC timestamp for timestamping RAS error events. However, if the ras_core pointer is NULL, the function attempts to access ras_core->dev, leading to a potential NULL pointer dereference. This can cause the system to crash or behave unexpectedly. The fix involves adding an early NULL check for ras_core to prevent this dereference.

Mitigation Strategies

To mitigate this vulnerability, update the Linux kernel to a version where the fix for the NULL pointer dereference in ras_core_get_utc_second_timestamp() has been applied.

The fix involves adding an early NULL check for ras_core at the beginning of the function to prevent dereferencing a NULL pointer.

Impact Analysis

The impact of this vulnerability is a potential NULL pointer dereference in the Linux kernel, which can lead to system crashes or instability when the affected function is called with a NULL ras_core pointer. This could result in denial of service or unexpected behavior in systems using the affected Linux kernel component.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53315. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart