CVE-2026-45876
published 2026-05-27CVE-2026-45876: In the Linux kernel, the following vulnerability has been resolved: arm64/gcs: Fix error handling in arch_set_shadow_stack_status() alloc_gcs() returns an…
medium5.5
In the Linux kernel, the following vulnerability has been resolved:
arm64/gcs: Fix error handling in arch_set_shadow_stack_status()
alloc_gcs() returns an error-encoded pointer on failure, which comes
from do_mmap(), not NULL.
The current NULL check fails to detect errors, which could lead to using
an invalid GCS address.
Use IS_ERR_VALUE() to properly detect errors, consistent with the
check in gcs_alloc_thread_stack().
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| linux | linux | — | — |
| linux | linux | >= b57180c75c7ebff6613886cb69ef6e283a10358b < c787a235deb33be6eda40beee8f561da5fd8cb8c | c787a235deb33be6eda40beee8f561da5fd8cb8c |
| linux | linux | >= b57180c75c7ebff6613886cb69ef6e283a10358b < a4741114c9622346c4bbb8cc2bbd88153616ffaf | a4741114c9622346c4bbb8cc2bbd88153616ffaf |
| linux | linux | >= b57180c75c7ebff6613886cb69ef6e283a10358b < 53c998527ffa60f9deda8974a11ad39790684159 | 53c998527ffa60f9deda8974a11ad39790684159 |
| linux | linux_kernel | — | — |