CVE-2026-53149 | Linux Kernel up to 7.0.12 thunderbolt __tb_property_parse_dir length infinite loop

Inserito da Angelo Barbosa | Giu 25, 2026 | CVE

A vulnerability labeled as critical has been found in Linux Kernel up to 7.0.12. This impacts the function __tb_property_parse_dir of the component thunderbolt. Such manipulation of the argument length leads to infinite loop.

This vulnerability is uniquely identified as CVE-2026-53149. The attack can only be initiated within the local network. No exploit exists.

The affected component should be upgraded.

CVE-2026-53149 | Linux Kernel up to 7.0.12 thunderbolt __tb_property_parse_dir length infinite loop

Post correlati

CVE-2024-9898 | Parallax Image Plugin up to 1.8 on WordPress Shortcode dd-parallax cross site scripting

CVE-2025-24360 | Nuxt up to 3.15.2 on Vue information disclosure (GHSA-2452-6xj8-jh47)

CVE-2026-3795 | doramart DoraCMS 3.0.x v1.js createFileBypath path traversal

CVE-2025-53926 | Emlog Pro up to 2.5.17 POST Request comname cross site scripting