KVM: arm64: nv: Fix handling of XN[0] when !FEAT_XNX

8.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Description

In the Linux kernel, the following vulnerability has been resolved:

KVM: arm64: nv: Fix handling of XN[0] when !FEAT_XNX

XN has already been extracted from its bitfield position so using
FIELD_PREP() on the mask that clears XN[0] is completely broken, having
the effect of unconditionally granting execute permissions...

Fix the obvious mistake by manipulating the right bit.

AI Analysis

KVM arm64 nv vulnerability allowing unconditional execute permissions

Basic Information

ID CVE-2026-53200

Source Linux

Published Jun 25, 2026 at 08:39

Modified Jun 28, 2026 at 06:40

Affected Product

Vendor Linux

Product Linux

Version d93febe2ed2e0491af9d47f0ee6d4b01918877f4

Affected Versions Linux Linux d93febe2ed2e0491af9d47f0ee6d4b01918877f4
Linux Linux d93febe2ed2e0491af9d47f0ee6d4b01918877f4
Linux Linux 6.19

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor Linux

Product KVM

Version 6.19

References

{
    "lastseen": "",
    "description": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: arm64: nv: Fix handling of XN[0] when !FEAT_XNX\n\nXN has already been extracted from its bitfield position so using\nFIELD_PREP() on the mask that clears XN[0] is completely broken, having\nthe effect of unconditionally granting execute permissions...\n\nFix the obvious mistake by manipulating the right bit.",
    "published": "2026-06-25T08:39:08.968Z",
    "modified": "2026-06-28T06:40:18.167Z",
    "type": "cve",
    "title": "KVM: arm64: nv: Fix handling of XN[0] when !FEAT_XNX",
    "source": "Linux",
    "references": "https://git.kernel.org/stable/c/b95976c2ea446044553a5f469c0bae13553d75ab\nhttps://git.kernel.org/stable/c/49b32ddb87a3a109afecea89e55d70f73956b8bc",
    "id": "CVE-2026-53200",
    "bulletinFamily": "",
    "cwe": null,
    "cvelist": null,
    "sourceData": "Linux Linux d93febe2ed2e0491af9d47f0ee6d4b01918877f4\nLinux Linux d93febe2ed2e0491af9d47f0ee6d4b01918877f4\nLinux Linux 6.19",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Linux",
    "version": "d93febe2ed2e0491af9d47f0ee6d4b01918877f4",
    "vendor": "Linux",
    "ai_description": "KVM arm64 nv vulnerability allowing unconditional execute permissions",
    "ai_severity": "High",
    "ai_vendor": "Linux",
    "ai_product": "KVM",
    "ai_version": "6.19",
    "ai_score": 8.8
}

KVM: arm64: nv: Fix handling of XN[0] when !FEAT_XNX_CVE-2026-53200