CVE-2026-53044
Analyzed Analyzed - Analysis Complete

Incorrect ARRAY_SIZE Usage in Tegra CBB Fabric Lookup Tables

Vulnerability report for CVE-2026-53044, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-06-24

Last updated on: 2026-07-14

Assigner: kernel.org

Description

In the Linux kernel, the following vulnerability has been resolved: soc/tegra: cbb: Fix incorrect ARRAY_SIZE in fabric lookup tables Fix incorrect ARRAY_SIZE usage in fabric lookup tables which could cause out-of-bounds access during target timeout lookup.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-06-24
Last Modified
2026-07-14
Generated
2026-07-15
AI Q&A
2026-06-24
EPSS Evaluated
2026-07-13
NVD
EUVD

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
linux linux_kernel From 6.19 (inc) to 7.0.10 (exc)
linux linux_kernel From 6.17 (inc) to 6.18.33 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-125 The product reads data past the end, or before the beginning, of the intended buffer.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is related to the Linux kernel, specifically in the soc/tegra component involving the cbb fabric lookup tables.

The issue was caused by incorrect usage of the ARRAY_SIZE macro in these fabric lookup tables.

This incorrect usage could lead to out-of-bounds access during the target timeout lookup process.

Impact Analysis

The vulnerability could cause out-of-bounds memory access in the Linux kernel during target timeout lookup.

Out-of-bounds access can potentially lead to system instability, crashes, or unexpected behavior.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53044. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart