CVE-2026-53200 PUBLISHED

KVM: arm64: nv: Fix handling of XN[0] when !FEAT_XNX

Assigner: Linux
Reserved: 09.06.2026 Published: 25.06.2026 Updated: 25.06.2026

In the Linux kernel, the following vulnerability has been resolved:

KVM: arm64: nv: Fix handling of XN[0] when !FEAT_XNX

XN has already been extracted from its bitfield position so using FIELD_PREP() on the mask that clears XN[0] is completely broken, having the effect of unconditionally granting execute permissions...

Fix the obvious mistake by manipulating the right bit.

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from d93febe2ed2e0491af9d47f0ee6d4b01918877f4 to b95976c2ea446044553a5f469c0bae13553d75ab (excl.) affected from d93febe2ed2e0491af9d47f0ee6d4b01918877f4 to 49b32ddb87a3a109afecea89e55d70f73956b8bc (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected Version 6.19 is affected unaffected from 0 to 6.19 (excl.) unaffected from 7.0.13 to 7.0.* (incl.) unaffected from 7.1 to * (incl.)

CVE-2026-53200 PUBLISHED

KVM: arm64: nv: Fix handling of XN[0] when !FEAT_XNX

Product Status

References