In the Linux kernel, the following vulnerability has been resolved:
vsock/virtio: fix potential unbounded skb queue
virtiotransportincrxpkt() checks vvs->rxbytes + len > vvs->bufalloc.
virtiotransportrecvenqueue() skips coalescing for packets with VIRTIOVSOCKSEQEOM.
If fed with packets with len == 0 and VIRTIOVSOCKSEQEOM, a very large number of packets can be queued because vvs->rxbytes stays at 0.
Fix this by estimating the skb metadata size:
(Number of skbs in the queue) * SKB_TRUESIZE(0)
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53132.json",
"cna_assigner": "Linux"
}