CVE-2026-53031

Published: June 26, 2026Last modified: June 26, 2026

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Validate node_id in arena_alloc_pages() arena_alloc_pages() accepts a plain int node_id and forwards it through the entire allocation chain without any bounds checking. Validate node_id before passing it down the allocation chain in arena_alloc_pages().

Status

Product	Release	Package	Status
Alpaquita Linux	23 LTS	linux-lts	Not affected (6.1.33-r0)
	25 LTS	linux-lts	Fixed (6.12.92-r0)
	Stream	linux-lts	Fixed (6.18.35-r1)

References

https://git.kernel.org/stable/c/2845989f2ebaf7848e4eccf9a779daf3156ea0a5
https://git.kernel.org/stable/c/31d3b4b28e55835646d6829d60023f730dd34e85
https://git.kernel.org/stable/c/e15900888c09480a4c632bc598f1c5bd39bed6d6
https://git.kernel.org/stable/c/fb66e20130f95a93ffea1677252526a9e39170b2

How to Fix Liberica NIK Not Starting on macOS Catalina and Later

If you use macOS Catalina and later you may encounter the issue that prevents Liberica NIK from starting. To fix it, run the following:

sudo xattr -r -d com.apple.quarantine path/to/graalvm/folder/

If you need more help, check out the FAQ at the bottom of this page or contact us.