🔴 高危 | CVE-2026-53217 — In the Linux kernel, the following vulnerability has be
🔴 《高危安全漏洞:CVE-2026-53217》
CVSS 评分: 高危(8.6) CVE ID: CVE-2026-53217
漏洞描述
In the Linux kernel, the following vulnerability has been resolved:
net: mvpp2: sync RX data at the hardware packet offset
mvpp2 programs the RX queue packet offset, so hardware writes received
data at dma_addr + MVPP2_SKB_HEADROOM. The current CPU sync starts at
dma_addr and only covers rx_bytes + MVPP2_MH_SIZE bytes, which syncs the
unused headroom and misses the same number of bytes at the packet tail.
On non-coherent DMA systems this can leave the CPU reading stale cache
contents for the end of the received frame.
Use dma_sync_single_range_for_cpu() with MVPP2_SKB_HEADROOM as the range
offset so the sync covers the Marvell header and packet data actually
written by hardware.
| 字段 | 值 |
|---|---|
| CVE ID | CVE-2026-53217 |
| CVSS 评分 | 8.6 |
| 严重程度 | 高危 |
| 发布时间 | 2026-06-25 |
| 状态 | Received |
数据来源: NVD | 获取时间: 2026-06-28 18:15