CVE-2026-53203

Summary

In the Linux kernel, the following vulnerability has been resolved:

accel/ivpu: Add buffer overflow check in MS get_info_ioctl

Add validation that the info size returned from the metric stream info query is not exceeded when checked against the allocated buffer size. If the firmware returns a size larger than the buffer, reject the operation with -EOVERFLOW instead of proceeding with an incorrect buffer copy.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxcdfad4db7756563db7d458216d9e3c2651dddc7d < d3c12ed33e8923f3090909a1738f3e59292996a6affected
LinuxLinuxcdfad4db7756563db7d458216d9e3c2651dddc7d < fa598556ecef412edcb391f144b7642e18fdfd45affected
LinuxLinuxcdfad4db7756563db7d458216d9e3c2651dddc7d < 4e5047cc94bea1cc7b670b7f503358e9af0542dfaffected
LinuxLinuxcdfad4db7756563db7d458216d9e3c2651dddc7d < fb176425837693f50c5c9fc8db6fbb04af22bd0aaffected
LinuxLinux6.11affected
LinuxLinux0 < 6.11unaffected
LinuxLinux6.12.94 <= 6.12.*unaffected
LinuxLinux6.18.36 <= 6.18.*unaffected
LinuxLinux7.0.13 <= 7.0.*unaffected
LinuxLinux7.1 <= *unaffected

Weaknesses

ADP Enrichment

kernel: accel/ivpu: Add buffer overflow check in MS get_info_ioctl

Additional References

References