CVE-2026-53132EXPLOITEDPATCHED

linux · linux kernel

vsock/virtio: fix potential unbounded skb queue

Description

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: fix potential unbounded skb queue virtio_transport_inc_rx_pkt() checks vvs->rx_bytes + len > vvs->buf_alloc. virtio_transport_recv_enqueue() skips coalescing for packets with VIRTIO_VSOCK_SEQ_EOM. If fed with packets with len == 0 and VIRTIO_VSOCK_SEQ_EOM, a very large number of packets can be queued because vvs->rx_bytes stays at 0. Fix this by estimating the skb metadata size: (Number of skbs in the queue) * SKB_TRUESIZE(0)

Affected Products

Vendor	Product	Versions
linux	linux kernel	077706165717686a2a6a71405fef036cd5b37ae0, 077706165717686a2a6a71405fef036cd5b37ae0, 077706165717686a2a6a71405fef036cd5b37ae0, 077706165717686a2a6a71405fef036cd5b37ae0, 5852a2b573f7a3a29df46296e56aa3491e589cdf, 6.1.63, 6.3

References

Related News (3 articles)

Tier A

Microsoft MSRC2h ago

CVE-2026-53132 vsock/virtio: fix potential unbounded skb queue

→ No new info (linked only)

Tier C

VulDB3d ago

CVE-2026-53132 | Linux Kernel up to 6.12.93/6.18.35/7.0.12 vsock virtio_transport_inc_rx_pkt rx_bytes privilege escalation

→ No new info (linked only)

Tier C

Linux Kernel CVEs3d ago

CVE-2026-53132: vsock/virtio: fix potential unbounded skb queue

→ No new info (linked only)

CVSS 3.17.1 HIGH

VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

1eca304f97a34ed5e921e1f0e06c8b241f25bf12

PublishedJun 25, 2026

Last enriched3d agov3

Trending Score62

Source articles3

Independent3

Info Completeness8/14

Missing: cvss, epss, cwe, kev, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-31431EXPKEV

crypto: algif_aead - Revert to operating out-of-place

Trending: 111

HIGHCVE-2026-43284EXPKEV

xfrm: esp: avoid in-place decrypt on shared skb frags

Trending: 106

HIGHCVE-2026-43500EXPKEV

rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present

Trending: 100

HIGHCVE-2026-46243EXP

smb: client: reject userspace cifs.spnego descriptions

Trending: 86

HIGHCVE-2026-46333EXP

ptrace: slightly saner 'get_dumpable()' logic

Trending: 70

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Jun 25, 2026

Discovered by ZDM

Jun 25, 2026

Updated: description, affectedVersions, severity, exploitAvailable, activelyExploited, patchAvailable

Jun 25, 2026

Updated: severity, affectedVersions

Jun 25, 2026

Actively Exploited

Jun 28, 2026

Exploit Available

Jun 28, 2026

Patch Available

Jun 28, 2026

Version History

Last enriched 3d ago

v3Tier C3d ago

Updated severity to CRITICAL, added new affected versions, and noted no exploit available.

severityaffectedVersions

via VulDB

v2Tier C3d ago

Updated description with more technical detail, added affected versions, changed severity to HIGH, and marked exploit available and actively exploited.

descriptionaffectedVersionsseverityexploitAvailableactivelyExploitedpatchAvailable

via Linux Kernel CVEs

v13d ago

Initial creation