In the Linux kernel, the following vulnerability has been resolved:
arm64/gcs: Fix error handling in archsetshadowstackstatus()
allocgcs() returns an error-encoded pointer on failure, which comes from dommap(), not NULL.
The current NULL check fails to detect errors, which could lead to using an invalid GCS address.
Use ISERRVALUE() to properly detect errors, consistent with the check in gcsallocthread_stack().
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/45xxx/CVE-2026-45876.json",
"cna_assigner": "Linux"
}