CyberRota
← Ana sayfaya dön

CVE-2026-53149

HIGH · CVSS 7.1 EPSS %0.13

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-25T09:16:32.257 · Çekilme zamanı: 2026-07-15T12:03:37.274063+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CVE
CVE-2026-53149
Severity
HIGH
CVSS
7.1
EPSS
%0.13
Linux

Orijinal NVD Açıklaması

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Bound root directory content to block size __tb_property_parse_dir() does not check that content_offset + content_len fits within block_len for the root directory case. When rootdir->length equals or exceeds block_len - 2, the entry loop reads past the allocated property block. Add a bounds check after computing content_offset and content_len to reject directories whose content extends past the block.