Buffer Size Limit Bypass in Linux Kernel SCSI Generic Module
CVE-2026-53304

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 26 June 2026

What is CVE-2026-53304?

This vulnerability in the Linux kernel's SCSI generic module enables a bypass of the default buffer size limit set by the parameter def_reserved_size. An attacker could exploit this by directly modifying the module parameter to provide invalid values, such as negative numbers, leading to a potential system instability or soft lockup. The kernel's enforcement mechanism, which is designed to limit this size, can be circumvented, resulting in unwanted CPU behavior that may be detrimental to system performance. A fix has been implemented to enforce stricter validations on the def_reserved_size parameter to prevent such exploits.

Affected Version(s)

Linux 6460e75a104d10458817d2f5b2fbff775bf0b43a < 3d74e0654ac908c65a8f20373091826fe43b1363

Linux 6460e75a104d10458817d2f5b2fbff775bf0b43a

References

https://git.kernel.org/stable/c/3d74e0654ac908c65a8f20373...

https://git.kernel.org/stable/c/c47ccfb3d80dfed522ca06a59...

https://git.kernel.org/stable/c/fe671d3c84ffb1b763d590c25...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2026
Vulnerability Reserved
Jun 9, 2026

CVE-2026-53304 Data

JSON