CVE-2026-53217 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: sync RX data at the hardware packet offset mvpp2 programs the RX queue packet offset, so hardware writes received data at dma_addr + MVPP2_SKB_HEADROOM. The current CPU sync starts at dma_addr and only covers rx_bytes + MVPP2_MH_SIZE bytes, which syncs the unused headroom and misses the same number of bytes at the packet tail. On non-coherent DMA systems this can leave the CPU reading stale cache contents for the end of the received frame. Use dma_sync_single_range_for_cpu() with MVPP2_SKB_HEADROOM as the range offset so the sync covers the Marvell header and packet data actually written by hardware.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products

References

Link	Providers
https://git.kernel.org/stable/c/180235600934bef6add3be637c296d6cf3272e67
https://git.kernel.org/stable/c/19f8bc139e9b149d1e5bf75ae761d1bb8dd3e7d8
https://git.kernel.org/stable/c/23548007b3c66d628fc7d6b80d1e23be04ea10d9
https://git.kernel.org/stable/c/60412bdd1b2576659eac23a23d2d9ff96228a643
https://git.kernel.org/stable/c/a13199fa224e9f776f4005d5037df03aa9ea8f37
https://git.kernel.org/stable/c/a3ad9b5767c89531fc7dae951b51b0933dcf7051
https://git.kernel.org/stable/c/bede0f481b9137d73d1cf64309cbe4b94818a5d6
https://git.kernel.org/stable/c/e302206ad84a407a7e5f3f6fe767ff5efaace689

History

Thu, 25 Jun 2026 12:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-346 CWE-368

Thu, 25 Jun 2026 09:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: sync RX data at the hardware packet offset mvpp2 programs the RX queue packet offset, so hardware writes received data at dma_addr + MVPP2_SKB_HEADROOM. The current CPU sync starts at dma_addr and only covers rx_bytes + MVPP2_MH_SIZE bytes, which syncs the unused headroom and misses the same number of bytes at the packet tail. On non-coherent DMA systems this can leave the CPU reading stale cache contents for the end of the received frame. Use dma_sync_single_range_for_cpu() with MVPP2_SKB_HEADROOM as the range offset so the sync covers the Marvell header and packet data actually written by hardware.
Title		net: mvpp2: sync RX data at the hardware packet offset
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/180235600934bef6add3be637c296d6cf3272e67 https://git.kernel.org/stable/c/19f8bc139e9b149d1e5bf75ae761d1bb8dd3e7d8 https://git.kernel.org/stable/c/23548007b3c66d628fc7d6b80d1e23be04ea10d9 https://git.kernel.org/stable/c/60412bdd1b2576659eac23a23d2d9ff96228a643 https://git.kernel.org/stable/c/a13199fa224e9f776f4005d5037df03aa9ea8f37 https://git.kernel.org/stable/c/a3ad9b5767c89531fc7dae951b51b0933dcf7051 https://git.kernel.org/stable/c/bede0f481b9137d73d1cf64309cbe4b94818a5d6 https://git.kernel.org/stable/c/e302206ad84a407a7e5f3f6fe767ff5efaace689

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2026-06-25T08:39:20.186Z

Updated: 2026-06-25T08:39:20.186Z

Reserved: 2026-06-09T07:44:35.392Z

Link: CVE-2026-53217

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-25T12:00:14Z

Metrics

Affected Vendors & Products

Metrics

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object