U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2026-53148

Change History

New CVE Received from kernel.org 6/25/2026 5:16:32 AM

Action Type Old Value New Value
Added Description

                  
                
              
In the Linux kernel, the following vulnerability has been resolved:

thunderbolt: Clamp XDomain response data copy to allocation size

tb_xdp_properties_request() derives the per-packet copy length from
the response header without checking that it fits in the previously
allocated data buffer.  A malicious peer can set its length field
larger than the declared data_length, causing memcpy to write past
the kcalloc allocation.

Clamp the per-packet copy length so that the cumulative offset
never exceeds data_len.
Added Reference

                  
                
              
https://git.kernel.org/stable/c/05a43157676c243c248d1c6d9dcecbe6eba2f35d
Added Reference

                  
                
              
https://git.kernel.org/stable/c/0b334279a82d79fb4723bd4f614305de1ab69caa
Added Reference

                  
                
              
https://git.kernel.org/stable/c/322e93448d908434ae5545660fcbe8f5a7a8e141
Added Reference

                  
                
              
https://git.kernel.org/stable/c/5db10c8ad8c09f72c847dfeef3d876098257f505
Added Reference

                  
                
              
https://git.kernel.org/stable/c/6021d39ccd979713b39b980286020d8f9a45efd1
Added Reference

                  
                
              
https://git.kernel.org/stable/c/89ae04365e01d5ae4aae83044a8bbd2a9aaf8d0d
Added Reference

                  
                
              
https://git.kernel.org/stable/c/906035d5c3784570191d259cbf9a0ac1617852b5
Added Reference

                  
                
              
https://git.kernel.org/stable/c/fcbd0cdab92838854a5818be7ed8a097164ef6d5
Added Affected

                  
                
              
[{"vendor":"Linux","product":"Linux","defaultStatus":"unaffected","programFiles":["drivers/thunderbolt/xdomain.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"cdae7c07e3e3509eaabc18c1640a55dc5b99c179","lessThan":"0b334279a82d79fb4723bd4f614305de1ab69caa","versionType":"git","status":"affected"},{"version":"cdae7c07e3e3509eaabc18c1640a55dc5b99c179","lessThan":"6021d39ccd979713b39b980286020d8f9a45efd1","versionType":"git","status":"affected"},{"version":"cdae7c07e3e3509eaabc18c1640a55dc5b99c179","lessThan":"89ae04365e01d5ae4aae83044a8bbd2a9aaf8d0d","versionType":"git","status":"affected"},{"version":"cdae7c07e3e3509eaabc18c1640a55dc5b99c179","lessThan":"5db10c8ad8c09f72c847dfeef3d876098257f505","versionType":"git","status":"affected"},{"version":"cdae7c07e3e3509eaabc18c1640a55dc5b99c179","lessThan":"05a43157676c243c248d1c6d9dcecbe6eba2f35d","versionType":"git","status":"affected"},{"version":"cdae7c07e3e3509eaabc18c1640a55dc5b99c179","lessThan":"fcbd0cdab92838854a5818be7ed8a097164ef6d5","versionType":"git","status":"affected"},{"version":"cdae7c07e3e3509eaabc18c1640a55dc5b99c179","lessThan":"906035d5c3784570191d259cbf9a0ac1617852b5","versionType":"git","status":"affected"},{"version":"cdae7c07e3e3509eaabc18c1640a55dc5b99c179","lessThan":"322e93448d908434ae5545660fcbe8f5a7a8e141","versionType":"git","status":"affected"}]},{"vendor":"Linux","product":"Linux","defaultStatus":"affected","programFiles":["drivers/thunderbolt/xdomain.c"],"repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","versions":[{"version":"4.15","status":"affected"},{"version":"0","lessThan":"4.15","versionType":"semver","status":"unaffected"},{"version":"5.10.259","lessThanOrEqual":"5.10.*","versionType":"semver","status":"unaffected"},{"version":"5.15.210","lessThanOrEqual":"5.15.*","versionType":"semver","status":"unaffected"},{"version":"6.1.176","lessThanOrEqual":"6.1.*","versionType":"semver","status":"unaffected"},{"version":"6.6.143","lessThanOrEqual":"6.6.*","versionType":"semver","status":"unaffected"},{"version":"6.12.94","lessThanOrEqual":"6.12.*","versionType":"semver","status":"unaffected"},{"version":"6.18.36","lessThanOrEqual":"6.18.*","versionType":"semver","status":"unaffected"},{"version":"7.0.13","lessThanOrEqual":"7.0.*","versionType":"semver","status":"unaffected"},{"version":"7.1","lessThanOrEqual":"*","versionType":"original_commit_for_fix","status":"unaffected"}]}]