{"id":"CVE-2026-45993","summary":"LoongArch: Add spectre boundry for syscall dispatch table","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nLoongArch: Add spectre boundry for syscall dispatch table\n\nThe LoongArch syscall number is directly controlled by userspace, but\ndoes not have a array_index_nospec() boundry to prevent access past the\nsyscall function pointer tables.","modified":"2026-07-08T08:09:41.389140546Z","published":"2026-05-27T12:55:46.480Z","related":["openSUSE-SU-2026:10954-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/45xxx/CVE-2026-45993.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/07040904ad217545be096d4280ed33c02f6a3750"},{"type":"WEB","url":"https://git.kernel.org/stable/c/0c965d2784fbbd7f8e3b96d875c9cfdf7c00da3d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/108f2cd13577a410c0ad6ea00708596d9d0dfc90"},{"type":"WEB","url":"https://git.kernel.org/stable/c/85cbf7fb568af5358aae61925c4e66b8f5e1439d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/bc84a109c2082dd0c4b38e8d923c046b41977533"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c8a8e863928424046b8fd328f02c359baa0a0c3f"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/45xxx/CVE-2026-45993.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-45993"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"be769645a2aef577f07afdcb4de8fad20b6d57c0"},{"fixed":"c8a8e863928424046b8fd328f02c359baa0a0c3f"},{"fixed":"108f2cd13577a410c0ad6ea00708596d9d0dfc90"},{"fixed":"07040904ad217545be096d4280ed33c02f6a3750"},{"fixed":"85cbf7fb568af5358aae61925c4e66b8f5e1439d"},{"fixed":"bc84a109c2082dd0c4b38e8d923c046b41977533"},{"fixed":"0c965d2784fbbd7f8e3b96d875c9cfdf7c00da3d"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45993.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"5.19.0"},{"fixed":"6.1.176"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.6.140"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.7.0"},{"fixed":"6.12.86"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.13.0"},{"fixed":"6.18.27"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.19.0"},{"fixed":"7.0.4"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-45993.json"}}],"schema_version":"1.7.5"}