CVE-2026-53188 | In the Linux kernel, the following vulnerability has been re…

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Validate the passed in fops for ib_get_ucaps() Sashiko pointed out it is not safe to rely only on the devt because char/block alias so if the user finds a block device with the same dev_t it can masquerade as a ucap cdev fd. Test the f_ops to only accept authentic cdevs.

Metadata

CVE ID: CVE-2026-53188
State: PUBLISHED
Assigner: Linux
Reserved: 2026-06-09 07:44 UTC
Published: 2026-06-25 08:39 UTC
Last updated: 2026-06-25 08:39 UTC
Vendor / Product: Linux / Linux
Sources: cve.org · NVD

Severity & Metrics

No CVSS data available.

Affected products (2)

Vendor	Product	Platform	Versions
Linux	Linux	—	61e51682816d395307f78ae06d640089054c28ab < 96b6e98ff12d50ed5817230c6f1188e1150d225d, 61e51682816d395307f78ae06d640089054c28ab < aa181287ebdcc53ee0ba5c2f8243e2d541ebc19b, 61e51682816d395307f78ae06d640089054c28ab < 4a1b1ac2744694a2ecd66a84bdb1445f4ef24bee
Linux	Linux	—	6.15, 0 < 6.15, 6.18.36 ≤ 6.18., 7.0.13 ≤ 7.0. …

References (3)