{"id":"CVE-2026-53022","summary":"platform/x86: dell-wmi-sysman: bound enumeration string aggregation","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nplatform/x86: dell-wmi-sysman: bound enumeration string aggregation\n\npopulate_enum_data() aggregates firmware-provided value-modifier\nand possible-value strings into fixed 512-byte struct members.\nThe current code bounds each individual source string but then\nappends every string and separator with raw strcat() and no\nremaining-space check.\n\nSwitch the aggregation loops to a bounded append helper and\nreject enumeration packages whose combined strings do not fit\nin the destination buffers.\n\n[ij: add include]","modified":"2026-07-12T03:54:52.158286793Z","published":"2026-06-24T16:29:31.552Z","database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53022.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/3c34471c26abc52a37f5ad90949e2e4b8027eb14"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5a04f9a36930792f6d64e28d43609e158d09b665"},{"type":"WEB","url":"https://git.kernel.org/stable/c/75c738d4f27fa18a2a033de153bd40302bde6a66"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7b3dc1f764bf24eb99474a5de8173b0b43a8b071"},{"type":"WEB","url":"https://git.kernel.org/stable/c/90b118d264845f7aaf539ac49f7c75f1f29590e2"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ba0843c1955864401295f7ba3b420afe19f2266d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c5683ca4949a514fbe656c6d0d08c4c126e21db9"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53022.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-53022"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"e8a60aa7404bfef37705da5607c97737073ac38d"},{"fixed":"7b3dc1f764bf24eb99474a5de8173b0b43a8b071"},{"fixed":"75c738d4f27fa18a2a033de153bd40302bde6a66"},{"fixed":"ba0843c1955864401295f7ba3b420afe19f2266d"},{"fixed":"5a04f9a36930792f6d64e28d43609e158d09b665"},{"fixed":"c5683ca4949a514fbe656c6d0d08c4c126e21db9"},{"fixed":"90b118d264845f7aaf539ac49f7c75f1f29590e2"},{"fixed":"3c34471c26abc52a37f5ad90949e2e4b8027eb14"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53022.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.209"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.175"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.141"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.91"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.33"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"7.0.10"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53022.json"}}],"schema_version":"1.7.5"}