Improper input validation in Linux kernel - CVE-2026-53206
Published: June 26, 2026
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to improper input validation in the firmware image parser in drivers/accel/ivpu/ivpu_fw.c when parsing firmware image headers. A local user can supply a specially crafted firmware image with misaligned or undersized runtime memory values to cause a denial of service.