Vulnerability in Linux Kernel Affecting Mailbox Channel Management
CVE-2026-53294

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 26 June 2026

What is CVE-2026-53294?

A vulnerability in the Linux kernel's mailbox management system has been identified, wherein the receive (RX) channel can inadvertently be treated as the transmit (TX) channel. This situation occurs when the two channels have different Memory-Mapped Input/Output (MMIO) configurations. Failing to correctly handle this issue when freeing the channels can result in a double-free condition, which may lead to memory corruption and instability within the system. It is crucial for users and administrators to apply the necessary updates to mitigate the risks associated with this flaw.

Affected Version(s)

Linux 8ea4484d0c2bb4e2152261943fa1a3522654b1c7

Linux 8ea4484d0c2bb4e2152261943fa1a3522654b1c7 < 5d4f3d0f64f1016cb78b400a70b67df91fac99b5

Linux 8ea4484d0c2bb4e2152261943fa1a3522654b1c7

References

https://git.kernel.org/stable/c/fc0089f82c3e36060c2c79156...

https://git.kernel.org/stable/c/5d4f3d0f64f1016cb78b400a7...

https://git.kernel.org/stable/c/c494a11da45ad7ec9b0ff216c...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-53294 Data

JSON