Linux Kernel Vulnerability in Intel Graphics Drivers Affecting Overlay and Cursor Planes
CVE-2026-53356
What is CVE-2026-53356?
A vulnerability in the Linux kernel was identified related to the handling of physical buffer objects (BO) within the Intel graphics drivers. Specifically, the issue pertains to the drm/i915/gem component, where the sg_page() function erroneously returns a struct page pointer as a void pointer. This results in improper scaling during the pread/pwrite operations with offsets, causing potentially incorrect data to be accessed. The last affected platform with overlay or cursor planes utilizing physical mapping was Gen3/945G/Lakeport, highlighting the need for immediate attention to mitigate potential risks.
Affected Version(s)
Linux c6790dc22312f592c1434577258b31c48c72d52a < 40f738991058eb3e3530c3006a5bd6fd5e29f035
Linux c6790dc22312f592c1434577258b31c48c72d52a < 1ec8fc63e9cdb22da54e48e536c9204020416fc6
Linux c6790dc22312f592c1434577258b31c48c72d52a < 14469860e2e39b7095dcd658d2bad38a11110a68