CVE-2026-53132

In the Linux kernel, the following vulnerability has been resolved:

vsock/virtio: fix potential unbounded skb queue

virtio transport inc rx pkt() checks vvs->rx bytes + len > vvs->buf alloc.

virtio transport recv enqueue() skips coalescing for packets with VIRTIO VSOCK SEQ EOM.

If fed with packets with len == 0 and VIRTIO VSOCK SEQ EOM, a very large number of packets can be queued because vvs->rx bytes stays at 0.

Fix this by estimating the skb metadata size:

(Number of skbs in the queue) * SKB TRUESIZE(0)