{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-53132","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2026-06-09T07:44:35.386Z","datePublished":"2026-06-25T08:38:21.575Z","dateUpdated":"2026-06-28T06:39:26.465Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-06-28T06:39:26.465Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nvsock/virtio: fix potential unbounded skb queue\n\nvirtio_transport_inc_rx_pkt() checks vvs->rx_bytes + len > vvs->buf_alloc.\n\nvirtio_transport_recv_enqueue() skips coalescing for packets\nwith VIRTIO_VSOCK_SEQ_EOM.\n\nIf fed with packets with len == 0 and VIRTIO_VSOCK_SEQ_EOM,\na very large number of packets can be queued\nbecause vvs->rx_bytes stays at 0.\n\nFix this by estimating the skb metadata size:\n\n\t(Number of skbs in the queue) * SKB_TRUESIZE(0)"}],"metrics":[{"cvssV3_1":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H","baseScore":7.1,"baseSeverity":"HIGH"}}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["net/vmw_vsock/virtio_transport_common.c"],"versions":[{"version":"077706165717686a2a6a71405fef036cd5b37ae0","lessThan":"1eca304f97a34ed5e921e1f0e06c8b241f25bf12","status":"affected","versionType":"git"},{"version":"077706165717686a2a6a71405fef036cd5b37ae0","lessThan":"9bdc637fde66b63d6cad0caacd034888bb7bf5f5","status":"affected","versionType":"git"},{"version":"077706165717686a2a6a71405fef036cd5b37ae0","lessThan":"100d5b2ffdc6468b9e48532641f29e83efdcb63c","status":"affected","versionType":"git"},{"version":"077706165717686a2a6a71405fef036cd5b37ae0","lessThan":"059b7dbd20a6f0c539a45ddff1573cb8946685b5","status":"affected","versionType":"git"},{"version":"5852a2b573f7a3a29df46296e56aa3491e589cdf","status":"affected","versionType":"git"},{"version":"6.1.63","lessThan":"6.2","status":"affected","versionType":"semver"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["net/vmw_vsock/virtio_transport_common.c"],"versions":[{"version":"6.3","status":"affected"},{"version":"0","lessThan":"6.3","status":"unaffected","versionType":"semver"},{"version":"6.12.94","lessThanOrEqual":"6.12.*","status":"unaffected","versionType":"semver"},{"version":"6.18.36","lessThanOrEqual":"6.18.*","status":"unaffected","versionType":"semver"},{"version":"7.0.13","lessThanOrEqual":"7.0.*","status":"unaffected","versionType":"semver"},{"version":"7.1","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.3","versionEndExcluding":"6.12.94"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.3","versionEndExcluding":"6.18.36"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.3","versionEndExcluding":"7.0.13"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.3","versionEndExcluding":"7.1"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"6.1.63"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/1eca304f97a34ed5e921e1f0e06c8b241f25bf12"},{"url":"https://git.kernel.org/stable/c/9bdc637fde66b63d6cad0caacd034888bb7bf5f5"},{"url":"https://git.kernel.org/stable/c/100d5b2ffdc6468b9e48532641f29e83efdcb63c"},{"url":"https://git.kernel.org/stable/c/059b7dbd20a6f0c539a45ddff1573cb8946685b5"}],"title":"vsock/virtio: fix potential unbounded skb queue","x_generator":{"engine":"bippy-1.2.0"}}}}