CVE-2026-53309

Source
https://cve.org/CVERecord?id=CVE-2026-53309
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53309.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-53309
Downstream
Published
2026-06-26T19:41:03.505Z
Modified
2026-07-08T08:07:25.156637862Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
ocfs2/dlm: fix off-by-one in dlm_match_regions() region comparison
Details

In the Linux kernel, the following vulnerability has been resolved:

ocfs2/dlm: fix off-by-one in dlmmatchregions() region comparison

The local-vs-remote region comparison loop uses '<=' instead of '<', causing it to read one entry past the valid range of qr_regions. The other loops in the same function correctly use '<'.

Fix the loop condition to use '<' for consistency and correctness.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53309.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ea2034416b54700e30371f2ad6517cbb94674083
Fixed
760ab35040aca8399021fdb9ff1db1089feb7194
Fixed
c60a2710b73838d250cda57344c049b89abc5d52
Fixed
2a0673836f019e7c032acbf48d022d5ccf02a845
Fixed
819d8ebad3200a53de99bd7e297bc428e41ced54
Fixed
d5403ae28085761d58b555645bc7d5feadb10073
Fixed
1fb7f356547d9688822315cd2b205ff0bd5429b4
Fixed
426cd8eedac89b86148d4478990eeef16e8a2520
Fixed
01b61e8dda9b0fdb0d4cda43de25f4e390554d7b

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53309.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.6.37
Fixed
5.10.258
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.209
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.175
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.141
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.91
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.33
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.10

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53309.json"