CVE-2026-45876

Source
https://cve.org/CVERecord?id=CVE-2026-45876
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45876.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-45876
Downstream
Published
2026-05-27T12:16:43.350Z
Modified
2026-07-08T07:15:49.391475466Z
Summary
arm64/gcs: Fix error handling in arch_set_shadow_stack_status()
Details

In the Linux kernel, the following vulnerability has been resolved:

arm64/gcs: Fix error handling in archsetshadowstackstatus()

allocgcs() returns an error-encoded pointer on failure, which comes from dommap(), not NULL.

The current NULL check fails to detect errors, which could lead to using an invalid GCS address.

Use ISERRVALUE() to properly detect errors, consistent with the check in gcsallocthread_stack().

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/45xxx/CVE-2026-45876.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
b57180c75c7ebff6613886cb69ef6e283a10358b
Fixed
c787a235deb33be6eda40beee8f561da5fd8cb8c
Fixed
a4741114c9622346c4bbb8cc2bbd88153616ffaf
Fixed
53c998527ffa60f9deda8974a11ad39790684159

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45876.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.14
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.4

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45876.json"