CVE-2026-53356

Source
https://cve.org/CVERecord?id=CVE-2026-53356
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53356.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-53356
Downstream
Published
2026-07-01T13:32:31.428Z
Modified
2026-07-08T08:09:47.302238243Z
Summary
drm/i915/gem: Fix phys BO pread/pwrite with offset
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/i915/gem: Fix phys BO pread/pwrite with offset

sg_page() returns struct page pointer not (void *) so the scaling of pread/pwrite is wrong for phys BO and wrong parts of BO would be accessed if non-zero offset is used.

Last impacted platform with overlay or cursor planes using phys mapping was Gen3/945G/Lakeport.

(cherry picked from commit 3e49a2f85070b2fb672c1e0fdba281a4ea3aebe6)

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53356.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
c6790dc22312f592c1434577258b31c48c72d52a
Fixed
40f738991058eb3e3530c3006a5bd6fd5e29f035
Fixed
1ec8fc63e9cdb22da54e48e536c9204020416fc6
Fixed
14469860e2e39b7095dcd658d2bad38a11110a68
Fixed
07c33be968d9e0cab6cba38c81850a09942fcb2e
Fixed
3bd168dd835b93a3862cd05b0d13c432b115f9d6
Fixed
32d4c5d328a3ff995420f4f85163e1e403f43628
Fixed
dd51a2eeb93bc6faa892ff9083911dd23f82c187
Fixed
d21ad938398bca695a511307de38a65889e3b354

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53356.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.7.0
Fixed
5.10.259
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.210
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.176
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.143
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.94
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.36
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.13

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53356.json"