Linux Kernel Vulnerability in Intel Graphics Drivers Affecting Overlay and Cursor Planes
CVE-2026-53356

Currently unrated

Key Information:

Vendor

Linux

Status
Vendor
CVE Published:
1 July 2026

What is CVE-2026-53356?

A vulnerability in the Linux kernel was identified related to the handling of physical buffer objects (BO) within the Intel graphics drivers. Specifically, the issue pertains to the drm/i915/gem component, where the sg_page() function erroneously returns a struct page pointer as a void pointer. This results in improper scaling during the pread/pwrite operations with offsets, causing potentially incorrect data to be accessed. The last affected platform with overlay or cursor planes utilizing physical mapping was Gen3/945G/Lakeport, highlighting the need for immediate attention to mitigate potential risks.

Affected Version(s)

Linux c6790dc22312f592c1434577258b31c48c72d52a < 40f738991058eb3e3530c3006a5bd6fd5e29f035

Linux c6790dc22312f592c1434577258b31c48c72d52a < 1ec8fc63e9cdb22da54e48e536c9204020416fc6

Linux c6790dc22312f592c1434577258b31c48c72d52a < 14469860e2e39b7095dcd658d2bad38a11110a68

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.