6 matches found
CVE-2026-53196 vulnerabilities
Vulnerabilities for packages: linux-aws, linux-qemu, linux-gcp, linux-vmware...
ROOT-OS-UBUNTU-2204-CVE-2026-53196 CVE-2026-53196 in rootio-linux - Patched by Root
Root has patched CVE-2026-53196 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2404-CVE-2026-53196 CVE-2026-53196 in rootio-linux - Patched by Root
Root has patched CVE-2026-53196 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...
CVE-2026-53196
A flaw was found in the Linux kernel's ioti USB serial driver. A malicious USB device, when plugged into a host running this driver, can exploit a heap overflow vulnerability in the getmanufinfo function. This occurs because the driver does not properly validate the size of data read from the...
CVE-2026-53196
In the Linux kernel, the following vulnerability has been resolved: USB: serial: ioti: fix heap overflow in getmanufinfo getmanufinfo reads le16tocpuromdesc-Size bytes from the device I2C EEPROM into a buffer allocated with kmallocobj, which is sizeofstruct edgetimanufdescriptor = 10 bytes. The...
CVE-2026-53196
In the Linux kernel USB: serial: io_ti driver, CVE-2026-53196 describes a heap overflow in get_manuf_info() caused by reading rom_desc->Size bytes from an I2C EEPROM into a 10-byte buffer (kmalloc_obj()). Size is only checked against TI_MAX_I2C_SIZE (16384), allowing a malicious device to set ...