CVE-2026-53312

MEDIUM

iommu/riscv: Remove overflows on the invalidation path

Title source: cna
STIX 2.1

Description

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Remove overflows on the invalidation path Since RISC-V supports a sign extended page table it should support a gather->end of ULONG_MAX, but if this happens it will infinite loop because of the overflow. Also avoid overflow computing the length by moving the +1 to the other side of the <

Scores

CVSS v3 5.5
EPSS 0.0011
EPSS Percentile 1.6%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-835
Status published
Products (11)
linux/Kernel 6.13.0 - 6.18.33linux
linux/Kernel 6.19.0 - 7.0.10linux
Linux/Linux < 6.13
Linux/Linux 488ffbf181718b9ad8c1838cb249d60973e78eda - 40a13b49957937427bc23e78eb50679df4396a47
Linux/Linux 488ffbf181718b9ad8c1838cb249d60973e78eda - 9f0632b0d4246675fa221aa1a3bffadf9c6bd9ac
Linux/Linux 488ffbf181718b9ad8c1838cb249d60973e78eda - e4b7687784153481de45fd39fb97ba3919605c0c
Linux/Linux 6.13
Linux/Linux 6.18.33 - 6.18.*
Linux/Linux 7.0.10 - 7.0.*
Linux/Linux 7.1
... and 1 more
Published Jun 26, 2026
Tracked Since Jun 27, 2026