CVE-2026-53215

medium Red Hat
EPSS Score
0.2%
Exploitation probability in 30 days
Top 92% most likely to be exploited
Published: June 25, 2026 (14 days ago)
Last Modified: June 25, 2026
Vendor: Red Hat
Source: REDHAT

Description

A flaw was found in the Linux kernel's mvpp2 network driver. This vulnerability occurs due to incorrect handling of receive (RX) buffers, where a buffer is returned to the hardware Buffer Manager (BM) pool after it has been passed to the eXpress Data Path (XDP) or attached to a socket buffer (skb). This allows hardware Direct Memory Access (DMA) operations into memory that is no longer controlled by the RX ring, potentially leading to memory corruption.

CWE

CWE-763

Affected Products

Red Hat Enterprise Linux 10Red Hat Enterprise Linux 6Red Hat Enterprise Linux 7Red Hat Enterprise Linux 8Red Hat Enterprise Linux 9

References