Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-53325— agp/amd64: Fix broken error propagation in agp_amd64_probe()

AI Predicted 5.5 Difficulty: Easy EPSS 0.12% · P2

Possible ATT&CK Techniques 1AI

T1564.004 · NTFS File Attributes

Affected Version Matrix 20

VendorProductVersion RangeStatus
LinuxLinuxa32073bffc656ca4bde6002b6cf7c1a8e0e22712< ce800993af477fc24187349c6a20d3073140b759affected
a32073bffc656ca4bde6002b6cf7c1a8e0e22712< 1d7d45050e14083c1de1460c93f4063c1f0bca7baffected
a32073bffc656ca4bde6002b6cf7c1a8e0e22712< 3e844a63668d1c3d10a9d347d7ebf161b2f91c84affected
a32073bffc656ca4bde6002b6cf7c1a8e0e22712< eb045714bc6a2bbb0befb7a31b996a196e188869affected
a32073bffc656ca4bde6002b6cf7c1a8e0e22712< 564b3b3f6565313eb6fa5355ffd037d6fb27897faffected
a32073bffc656ca4bde6002b6cf7c1a8e0e22712< 53483a9f4ee9eeb18aa866ec16cce79e136987e1affected
a32073bffc656ca4bde6002b6cf7c1a8e0e22712< 0aa9b27c454c53074cde592eaceb442d30341585affected
a32073bffc656ca4bde6002b6cf7c1a8e0e22712< cefe535a60a2e00e09f4b2689b0c8ffc6912459aaffected
… +12 more rows
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-53325

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
agp/amd64: Fix broken error propagation in agp_amd64_probe()
Source: NVD (National Vulnerability Database)
Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: agp/amd64: Fix broken error propagation in agp_amd64_probe() A NULL pointer dereference was observed in the AMD64 AGP driver when running in a virtualized environment (e.g. qemu/kvm) without a physical AMD northbridge. The crash occurs in amd64_fetch_size() when attempting to dereference the pointer returned by node_to_amd_nb(0). The root cause of this crash is broken error propagation in agp_amd64_probe(): When no AMD northbridges are found, cache_nbs() correctly returns -ENODEV. However, the probe function erroneously checks the return value against exactly -1, rather than < 0. As a result, the hardware absence error is masked, allowing the driver to improperly proceed with initialization. It eventually calls agp_add_bridge(), which invokes amd64_fetch_size(). Since the hardware does not exist, node_to_amd_nb(0) returns NULL, leading to a General Protection Fault (GPF) when accessing its ->misc member. Fix the issue by correcting the error check in agp_amd64_probe() to abort properly when cache_nbs() returns any negative error code. This prevents the driver from erroneously proceeding without hardware, thereby avoiding the subsequent NULL pointer dereference at its source.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Linux kernel 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Linux kernel是美国Linux基金会开源的一款操作系统内核。 Linux kernel存在安全漏洞,该漏洞源于agp_amd64_probe()函数中错误传播处理不当,驱动在未找到AMD北桥硬件时错误地检查返回值(仅检查等于-1而非小于0),导致初始化继续进行,最终在调用node_to_amd_nb(0)时因返回NULL而触发空指针取消引用。受影响版本:2.6.18版本。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
LinuxLinux a32073bffc656ca4bde6002b6cf7c1a8e0e22712 ~ ce800993af477fc24187349c6a20d3073140b759 -
LinuxLinux 2.6.18 -

II. Public POCs for CVE-2026-53325

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-53325

登录查看更多情报信息。

Patches & Fixes for CVE-2026-53325 (9)

IV. Related Vulnerabilities

V. Comments for CVE-2026-53325

No comments yet


Leave a comment