CVE Catalog

CVE-2026-53206

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.11%

2th percentile — higher than 2% of all known CVEs

Summary

In the Linux kernel, the accel/ivpu driver now validates firmware runtime memory bounds. Missing bounds check could cause memory allocation and image transfer errors.

Risk Assessment

The organization faces potential memory allocation errors leading to system crashes or unpredictable driver behavior.

Recommendation

Immediately update the Linux kernel to a version containing the fix for CVE-2026-53206.

Original NVD description (English source)

In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds check for firmware runtime memory Validate that the firmware runtime memory specified in the image header is properly aligned and sized to hold the firmware image. This prevents errors during memory allocation and image transfer.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS