{
  "affected": [
    {
      "ranges": [
        {
          "events": [
            {
              "introduced": "72034050ccf4202cd6558b0afd2474f756ea3b9b"
            },
            {
              "fixed": "010983063a806720b45778d191335f8ea864fea3"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "40e2125381dc11379112485e3eefdd25c6df5375"
            },
            {
              "fixed": "b059a41bdd5b202b2b9d7708403fb43c69689e53"
            },
            {
              "fixed": "ce899f9c019591b73ef84b9afa332ed53beece25"
            },
            {
              "fixed": "34b3eef48d980cd37b876e128bbf314f69fb5d70"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "70212c2300971506e986d95000d2745529cac9d7"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "6.12.2"
            },
            {
              "fixed": "6.12.91"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "6.11.11"
            },
            {
              "fixed": "6.12"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Linux",
        "name": "Kernel"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "6.12.91"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.13.0"
            },
            {
              "fixed": "6.18.33"
            },
            {
              "fixed": "7.0.10"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "database_specific": {
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53051.json"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nPCI: tegra194: Fix CBB timeout caused by DBI access before core power-on\n\nWhen PERST# is deasserted twice (assert -\u003e deassert -\u003e assert -\u003e deassert),\na CBB (Control Backbone) timeout occurs at DBI register offset 0x8bc\n(PCIE_MISC_CONTROL_1_OFF). This happens because pci_epc_deinit_notify()\nand dw_pcie_ep_cleanup() are called before reset_control_deassert() powers\non the controller core.\n\nThe call chain that causes the timeout:\n\n  pex_ep_event_pex_rst_deassert()\n    pci_epc_deinit_notify()\n      pci_epf_test_epc_deinit()\n        pci_epf_test_clear_bar()\n          pci_epc_clear_bar()\n            dw_pcie_ep_clear_bar()\n              __dw_pcie_ep_reset_bar()\n                dw_pcie_dbi_ro_wr_en()      \u003c- Accesses 0x8bc DBI register\n    reset_control_deassert(pcie-\u003ecore_rst)  \u003c- Core powered on HERE\n\nThe DBI registers, including PCIE_MISC_CONTROL_1_OFF (0x8bc), are only\naccessible after the controller core is powered on via\nreset_control_deassert(pcie-\u003ecore_rst). Accessing them before this point\nresults in a CBB timeout because the hardware is not yet operational.\n\nFix this by moving pci_epc_deinit_notify() and dw_pcie_ep_cleanup() to\nafter reset_control_deassert(pcie-\u003ecore_rst), ensuring the controller is\nfully powered on before any DBI register accesses occur.",
  "id": "CVE-2026-53051",
  "modified": "2026-07-15T01:49:12.790829235Z",
  "published": "2026-06-24T16:29:56.949Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/010983063a806720b45778d191335f8ea864fea3"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/34b3eef48d980cd37b876e128bbf314f69fb5d70"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/b059a41bdd5b202b2b9d7708403fb43c69689e53"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/ce899f9c019591b73ef84b9afa332ed53beece25"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53051.json"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-53051"
    },
    {
      "type": "PACKAGE",
      "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"
    }
  ],
  "schema_version": "1.8.0",
  "summary": "PCI: tegra194: Fix CBB timeout caused by DBI access before core power-on"
}