CVE-2026-53200
8.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
KVM: arm64: nv: Fix handling of XN[0] when !FEAT_XNX
XN has already been extracted from its bitfield position so using FIELD_PREP() on the mask that clears XN[0] is completely broken, having the effect of unconditionally granting execute permissions…
Fix the obvious mistake by manipulating the right bit.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | d93febe2ed2e0491af9d47f0ee6d4b01918877f4 < b95976c2ea446044553a5f469c0bae13553d75ab | affected |
| Linux | Linux | d93febe2ed2e0491af9d47f0ee6d4b01918877f4 < 49b32ddb87a3a109afecea89e55d70f73956b8bc | affected |
| Linux | Linux | 6.19 | affected |
| Linux | Linux | 0 < 6.19 | unaffected |
| Linux | Linux | 7.0.13 <= 7.0.* | unaffected |
| Linux | Linux | 7.1 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/b95976c2ea446044553a5f469c0bae13553d75ab
- https://git.kernel.org/stable/c/49b32ddb87a3a109afecea89e55d70f73956b8bc
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.