CVE-2026-53052

Source
https://cve.org/CVERecord?id=CVE-2026-53052
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53052.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-53052
Downstream
Related
Published
2026-06-24T16:29:58.030Z
Modified
2026-07-09T18:30:50.974258294Z
Summary
ASoC: qcom: qdsp6: topology: check widget type before accessing data
Details

In the Linux kernel, the following vulnerability has been resolved:

ASoC: qcom: qdsp6: topology: check widget type before accessing data

Check widget type before accessing the private data, as this could a virtual widget which is no associated with a dsp graph, container and module. Accessing witout check could lead to incorrect memory access.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53052.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
36ad9bf1d93d66b901342eab9f8ed6c1537655a6
Fixed
8e8cd78b6000c9d19db249a5a68287158f288ef3
Fixed
1ac96689ce2984f4f6ef8892fcb65da377408421
Fixed
296810e91f21a21794886c57f954495d8afd7f32
Fixed
a1a24d4b8c9682f9b7a9138f636ff004c721aef1
Fixed
6d2491a585202a967ed91f30ec5960024f2536d0
Fixed
d5bfdd28e0cdd45043ae6e0ac168a451d59283dc

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53052.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.175
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.141
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.91
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.33
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.10

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53052.json"