CVE-2026-53020

Source
https://cve.org/CVERecord?id=CVE-2026-53020
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53020.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-53020
Downstream
Published
2026-06-24T16:29:29.796Z
Modified
2026-07-12T03:54:38.952053138Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
um: Fix potential race condition in TLB sync
Details

In the Linux kernel, the following vulnerability has been resolved:

um: Fix potential race condition in TLB sync

During the TLB sync, we need to traverse and modify the page table, so we should hold the page table lock. Since full SMP support for threads within the same process is still missing, let's disable the split page table lock for simplicity.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53020.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
1e4ee5135d814fe4785890790cec81c3132888fb
Fixed
f21c343ec7419377bff89ab11146c03ae117036f
Fixed
102331b66bcaf1f41f50b9c4cd5c36e46bafa9f3

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53020.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.10

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53020.json"