CVE-2026-53119

In the Linux kernel, the following vulnerability has been resolved:

platform/wmi: use generic driver override infrastructure

When a driver is probed through driver attach(), the bus' match() callback is called without the device lock held, thus accessing the driver override field without a lock, which can cause a UAF.

Fix this by using the driver-core driver override infrastructure taking care of proper locking internally.

Note that calling match() from driver attach() without the device lock held is intentional. [1]