VDB

CVE-2026-53356

CVE-2026-53356 PUBLISHED

Reported by Linux · Published July 1, 2026

In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Fix phys BO pread/pwrite with offset sg_page() returns struct page pointer not (void *) so the scaling of pread/pwrite is wrong for phys BO and wrong parts of BO would be accessed if non-zero offset is used. Last impacted platform with overlay or cursor planes using phys mapping was Gen3/945G/Lakeport. (cherry picked from commit 3e49a2f85070b2fb672c1e0fdba281a4ea3aebe6)

EPSS 0.16% · 6.0th percentile

Risk Scores

EPSS Score
0.16%
6.0th percentile

Affected Products

VendorProductVersions
LinuxLinuxc6790dc22312f592c1434577258b31c48c72d52a, c6790dc22312f592c1434577258b31c48c72d52a, c6790dc22312f592c1434577258b31c48c72d52a
LinuxLinux5.7, 0, 5.10.259
LinuxLinux7.1, 0, 5.10.259
linuxlinux_kernel5.7, 5.7, 5.7

Timeline

  • Jul 1, 2026 CVE Published
  • Jul 2, 2026 EPSS Score
  • Jul 2, 2026 Coalition ESS Score
  • Jul 5, 2026 Security Advisory

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›