CVE-2026-53206
MediumCVSS 5.5Exploitation Probability (EPSS)
Low risk2th percentile — higher than 2% of all known CVEs
Summary
In the Linux kernel, the accel/ivpu driver now validates firmware runtime memory bounds. Missing bounds check could cause memory allocation and image transfer errors.
Risk Assessment
The organization faces potential memory allocation errors leading to system crashes or unpredictable driver behavior.
Recommendation
Immediately update the Linux kernel to a version containing the fix for CVE-2026-53206.
Original NVD description (English source)
In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Add bounds check for firmware runtime memory Validate that the firmware runtime memory specified in the image header is properly aligned and sized to hold the firmware image. This prevents errors during memory allocation and image transfer.

