PT-2026-43930 · Linux · Linux Kernel

CVE-2026-46063

·

Published

2026-05-27

·

Updated

2026-07-08

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A deadlock can occur during the shadow stack signal frame pop process in the sigreturn operation. The kernel attempts to verify that it is reading actual shadow stack memory by holding the mmap read lock while accessing the memory and checking the VMA flags. If the read access triggers a page fault, the fault handler attempts to recursively acquire another mmap read lock. If a writer on another CPU is waiting, this second lock request can fail, leading to a deadlock.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Improper Locking

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-46063
OPENSUSE-SU-2026:10954-1
SUSE-SU-2026:22521-1
SUSE-SU-2026:22522-1
SUSE-SU-2026:2799-1
SUSE-SU-2026:2800-1
USN-8488-1
USN-8488-2
USN-8489-1
USN-8507-1

Affected Products

Linux Kernel