CVE-2026-53356
Received Received - Intake

i915 GEM Phys BO Pread/Pwrite Offset Handling Fix

Vulnerability report for CVE-2026-53356, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-01

Last updated on: 2026-07-01

Assigner: kernel.org

Description

In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Fix phys BO pread/pwrite with offset sg_page() returns struct page pointer not (void *) so the scaling of pread/pwrite is wrong for phys BO and wrong parts of BO would be accessed if non-zero offset is used. Last impacted platform with overlay or cursor planes using phys mapping was Gen3/945G/Lakeport. (cherry picked from commit 3e49a2f85070b2fb672c1e0fdba281a4ea3aebe6)

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-01
Last Modified
2026-07-01
Generated
2026-07-01
AI Q&A
2026-07-01
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Currently, no data is known.

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability exists in the Linux kernel's drm/i915/gem component. It involves incorrect handling of physical buffer objects (phys BO) during pread and pwrite operations with an offset. Specifically, the function sg_page() returns a struct page pointer rather than a void pointer, which causes incorrect scaling of pread/pwrite operations for phys BO. As a result, when a non-zero offset is used, wrong parts of the buffer object (BO) could be accessed.

The issue affected platforms with overlay or cursor planes using physical mapping, particularly older hardware such as Gen3/945G/Lakeport.

Impact Analysis

This vulnerability can cause incorrect memory regions to be accessed during read or write operations on physical buffer objects in the graphics subsystem. This could potentially lead to data corruption or unintended data exposure if wrong parts of memory are accessed.

Since the issue affects graphics memory handling on certain older platforms, it might impact system stability or graphics rendering correctness on those systems.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-53356. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart