CVE-2026-45993
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
27/05/2026
Last modified:
19/06/2026
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
LoongArch: Add spectre boundry for syscall dispatch table<br />
<br />
The LoongArch syscall number is directly controlled by userspace, but<br />
does not have a array_index_nospec() boundry to prevent access past the<br />
syscall function pointer tables.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 5.19 (including) | 6.6.140 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.7 (including) | 6.12.86 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.13 (including) | 6.18.27 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.19 (including) | 7.0.4 (excluding) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- https://git.kernel.org/stable/c/07040904ad217545be096d4280ed33c02f6a3750
- https://git.kernel.org/stable/c/0c965d2784fbbd7f8e3b96d875c9cfdf7c00da3d
- https://git.kernel.org/stable/c/108f2cd13577a410c0ad6ea00708596d9d0dfc90
- https://git.kernel.org/stable/c/85cbf7fb568af5358aae61925c4e66b8f5e1439d
- https://git.kernel.org/stable/c/bc84a109c2082dd0c4b38e8d923c046b41977533
- https://git.kernel.org/stable/c/c8a8e863928424046b8fd328f02c359baa0a0c3f



