CVE-2026-31482

MEDIUM

s390/entry: Scrub r12 register on kernel entry

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: s390/entry: Scrub r12 register on kernel entry Before commit f33f2d4c7c80 ("s390/bp: remove TIF_ISOLATE_BP"), all entry handlers loaded r12 with the current task pointer (lg %r12,__LC_CURRENT) for use by the BPENTER/BPEXIT macros. That commit removed TIF_ISOLATE_BP, dropping both the branch prediction macros and the r12 load, but did not add r12 to the register clearing sequence. Add the missing xgr %r12,%r12 to make the register scrub consistent across all entry points.

References (5)

Core 5

Core References

https://git.kernel.org/stable/c/a58d298a83a3a9b7ca99ded9d60a1e77231159ef

https://git.kernel.org/stable/c/95c899cd791803a5bf7b73e5994fbbe1cc1a9c36

https://git.kernel.org/stable/c/7f4e3233faa8470dd0627bc49b2809f2bfebd909

https://git.kernel.org/stable/c/99a8b420f3f0e162eb9c9c9253929d4d23f9bd30

https://git.kernel.org/stable/c/0738d395aab8fae3b5a3ad3fc640630c91693c27

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 3.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published

Products (15)

Linux/Linux < 6.4

Linux/Linux 6.12.80 - 6.12.*

Linux/Linux 6.18.21 - 6.18.*

Linux/Linux 6.19.11 - 6.19.*

Linux/Linux 6.4

Linux/Linux 6.6.131 - 6.6.*

Linux/Linux 7.0

Linux/Linux f33f2d4c7c80c641f6ca3dfe5e7dfe1f91543780 - 0738d395aab8fae3b5a3ad3fc640630c91693c27

Linux/Linux f33f2d4c7c80c641f6ca3dfe5e7dfe1f91543780 - 7f4e3233faa8470dd0627bc49b2809f2bfebd909

Linux/Linux f33f2d4c7c80c641f6ca3dfe5e7dfe1f91543780 - 95c899cd791803a5bf7b73e5994fbbe1cc1a9c36

... and 5 more

Published Apr 22, 2026

Tracked Since Apr 22, 2026