CVE-2026-52949

ANALYSIS PENDING

drm/ttm: Fix ttm_bo_shrink() infinite LRU walk on backup failure

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix ttm_bo_shrink() infinite LRU walk on backup failure Apply the same fix as b2ed01e7ad ("drm/ttm: Fix ttm_bo_swapout() infinite LRU walk on swapout failure") to the ttm_bo_shrink() path. Move del_bulk_move from before the backup to after success only, using ttm_resource_del_bulk_move_unevictable() since the resource is now unevictable once fully backed up.

Scores

EPSS 0.0016
EPSS Percentile 5.8%

Details

Status published
Products (7)
linux/Kernel 6.15.0 - 7.0.10linux
Linux/Linux < 6.15
Linux/Linux 6.15
Linux/Linux 7.0.10 - 7.0.*
Linux/Linux 7.1
Linux/Linux 70d645deac98303d1bf9ab08a4e68da52bf8c1e1 - 1d59f36e95f7f7134db0e313c9d787cb0adb2153
Linux/Linux 70d645deac98303d1bf9ab08a4e68da52bf8c1e1 - 9402ad98a047dd9894ec868a7df5ad9bd03327d3
Published Jun 24, 2026
Tracked Since Jun 24, 2026