All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2026-53202
HIGHpublished 2026-06-25 09:16 UTC · 3 days ago · modified 2026-06-28 08:16 UTC
7.8
CVSS / 10
// description
In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix signed integer truncation in IPC receive Fix potential buffer overflow where firmware-supplied data_size is cast to signed int before being used in min_t(). Large unsigned values (>= 0x80000000) become negative, causing unsigned wraparound and oversized memcpy operations that can overflow the stack buffer. Change min_t(int, ...) to min() as both values are unsigned and can be handled by min() without explicit cast.
// cvss 3.1 vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H