CVE-2026-53133

Source
https://cve.org/CVERecord?id=CVE-2026-53133
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53133.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-53133
Downstream
Related
Published
2026-06-25T08:38:22.469Z
Modified
2026-07-11T09:29:26.827289829Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
RDMA/umem: Fix truncation for block sizes >= 4G
Details

In the Linux kernel, the following vulnerability has been resolved:

RDMA/umem: Fix truncation for block sizes >= 4G

When the iommu is used the linearization of the mapping can give a single block that is very large split across multiple SG entries.

When _rdmablockiternext() reassembles the split SG entries it is overflowing the 32 bit stack values and computed the wrong DMA addresses for blocks after the truncation.

Use the right types to hold DMA addresses.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53133.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
a808273a495c657e33281b181fd7fcc2bb28f662
Fixed
2ff4b7817e5b78070c30f5fb5e678e452a2628b3
Fixed
dee2a49adeeb2a5e16a3fc858fa21b841c519802
Fixed
cc644d5608e3b0dadc970bd6e6aa26b91ea07d0f
Fixed
8fe0231adebe086c8a459c790944ac026cd99c6e
Fixed
baf8685bcf56dc1efb44b8f6a57c42516e549068
Fixed
afd35fec9297195b759078745549c2671223f24f
Fixed
ac1aad8e1281534ce936c250f68084fc79c5469e
Fixed
15fe76e23615f502d051ef0768f86babaf08746c

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53133.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.2.0
Fixed
5.10.259
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.210
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.176
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.143
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.94
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.36
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.13

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53133.json"