CVE-2026-53312 PUBLISHED

iommu/riscv: Remove overflows on the invalidation path

Assigner: Linux
Reserved: 09.06.2026 Published: 26.06.2026 Updated: 26.06.2026

In the Linux kernel, the following vulnerability has been resolved:

iommu/riscv: Remove overflows on the invalidation path

Since RISC-V supports a sign extended page table it should support a gather->end of ULONG_MAX, but if this happens it will infinite loop because of the overflow.

Also avoid overflow computing the length by moving the +1 to the other side of the <

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from 488ffbf181718b9ad8c1838cb249d60973e78eda to 9f0632b0d4246675fa221aa1a3bffadf9c6bd9ac (excl.) affected from 488ffbf181718b9ad8c1838cb249d60973e78eda to e4b7687784153481de45fd39fb97ba3919605c0c (excl.) affected from 488ffbf181718b9ad8c1838cb249d60973e78eda to 40a13b49957937427bc23e78eb50679df4396a47 (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 6.13 is affected unaffected from 0 to 6.13 (excl.) unaffected from 6.18.33 to 6.18.* (incl.) unaffected from 7.0.10 to 7.0.* (incl.) unaffected from 7.1 to * (incl.)

CVE-2026-53312 PUBLISHED

iommu/riscv: Remove overflows on the invalidation path

Product Status

References