Parsing Vulnerability in Linux Kernel Affecting Vector Attribute Events
CVE-2026-53245

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 25 June 2026

What is CVE-2026-53245?

A vulnerability in the Linux kernel's handling of vector attribute events can lead to improper parsing in the mrp_pdu_parse_vecattr() function. This issue arises when the parser fails to correctly decrement the event counter after processing events encoded across multiple bytes, potentially allowing for spurious event applications. Moreover, the parser improperly consumes bytes when valen is zero, corrupting subsequent parsing offsets, and does not adequately manage attribute values across byte boundaries. These flaws collectively affect the integrity of network data processing, necessitating prompt attention.

Affected Version(s)

Linux febf018d22347b5df94066bca05d0c11a84e839d

Linux febf018d22347b5df94066bca05d0c11a84e839d < 36d259711872e3b2f6cd76a4d270c21931c0f35f

Linux febf018d22347b5df94066bca05d0c11a84e839d

References

https://git.kernel.org/stable/c/ae65714d96f68bb252eb20085...

https://git.kernel.org/stable/c/36d259711872e3b2f6cd76a4d...

https://git.kernel.org/stable/c/cc98717e591a963a616fdf15e...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 25, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-53245 Data

JSON