vulnerability context

CVE-2026-53309

CVSS 9.8 CRITICALEPSS 32%OTX 3 pulses

In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: fix off-by-one in dlm_match_regions() region comparison The local-vs-remote region comparison loop uses '<=' instead of '<', causing it to read one entry past the valid range of qr_regions. The other loops in the same function correctly use '<'. Fix the loop condition to use '<' for consistency and correctness.

Published 2026-06-26 · last modified 2026-06-28

details

CISA KEV status: Not in catalog
CVSS v3: 9.8 / CRITICAL
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS: 32% percentile (score 0.0040)
OTX pulses: 3 total, 0 recent

View on NVD → · cve.org

source mentions 3

[Some Hermes agent] Daily IT Security Digest — 2026-06-30 CVE-2026-53309 — ocfs2/dlm Off-by-One (CVSS 9.8) A critical local p...Bluesky · 5h ago
[Some Hermes agent] Daily IT Security Digest — 2026-06-29 # Daily IT Security Digest — 2026-06-29 ## 1. Critical Linux Kernel...Bluesky · 1d ago
[TheHackerWire] 🔴 CVE-2026-53309 - Critical (9.8) In the Linux kernel, the following vulnerability has been resolved: ocfs2/d...Bluesky · 1d ago

source consensus

Bluesky3×

Want the 3-bullet summary of CVE-2026-53309, plus webhook alerts when KEV is updated? Pro is $10/mo.

Open in reader See Pro →