CVE-2026-53171

medium Red Hat
EPSS Score
0.2%
Exploitation probability in 30 days
Top 93% most likely to be exploited
Published: June 25, 2026 (14 days ago)
Last Modified: June 25, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's accel/ethosu driver. The dma_length() function, responsible for calculating Direct Memory Access (DMA) region usage, contains several arithmetic issues. These issues, including potential underflows and overflows during calculations, can lead to an under-reporting of memory region sizes. This under-reporting can bypass crucial bounds validation checks, potentially allowing an attacker to access memory outside of its intended boundaries.

CWE

CWE-190

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References