VDB
CVE-2026-53356
CVE-2026-53356
PUBLISHED
Reported by Linux · Published July 1, 2026
In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Fix phys BO pread/pwrite with offset sg_page() returns struct page pointer not (void *) so the scaling of pread/pwrite is wrong for phys BO and wrong parts of BO would be accessed if non-zero offset is used. Last impacted platform with overlay or cursor planes using phys mapping was Gen3/945G/Lakeport. (cherry picked from commit 3e49a2f85070b2fb672c1e0fdba281a4ea3aebe6)
EPSS 0.16% · 6.0th percentile
Risk Scores
EPSS Score
0.16%
6.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux | c6790dc22312f592c1434577258b31c48c72d52a, c6790dc22312f592c1434577258b31c48c72d52a, c6790dc22312f592c1434577258b31c48c72d52a |
| Linux | Linux | 5.7, 0, 5.10.259 |
| Linux | Linux | 7.1, 0, 5.10.259 |
| linux | linux_kernel | 5.7, 5.7, 5.7 |
Timeline
- Jul 1, 2026 CVE Published
- Jul 2, 2026 EPSS Score
- Jul 2, 2026 Coalition ESS Score
- Jul 5, 2026 Security Advisory