CVE-2026-53114
Low risk· EPSS 5%Exploitation Probability (EPSS)
Low risk5th percentile - higher than 5% of all known CVEs
Summary
In the Linux kernel, a vulnerability was found in the AMD IBS driver where calling perf_allow_kernel() from the NMI context is unsafe and could be fatal. The fix caches the permission at event initialization time instead of making the direct call in the NMI handler.
Risk Assessment
The risk involves a potential kernel panic during NMI handling, which could lead to unplanned server reboots or hangs, especially in environments with heavy performance monitoring.
Recommendation
Immediately update the Linux kernel to a version containing the fix (commit 2a2b8e0b5c9f or later). For production systems, schedule a reboot after the update.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: perf/amd/ibs: Avoid calling perf_allow_kernel() from the IBS NMI handler Calling perf_allow_kernel() from the NMI context is unsafe and could be fatal. Capture the permission at event-initialization time by storing it in event->hw.flags, and have the NMI handler rely on that cached flag instead of making the call directly.

