Always-Incorrect Control Flow Implementation in Linux kernel - CVE-2026-53346
Published: July 2, 2026
Linux kernel
Detailed vulnerability description
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to improper generation of unwind table metadata in arm64 Rust build handling when booting a kernel with CONFIG_UNWIND_PATCH_PAC_INTO_SCS enabled. A local user can execute code in a vulnerable kernel build to trigger a crash during boot.
The issue affects compiler-generated constructors such as kasan constructors, where incorrect dwarf information can cause illegal patching of paciasp and autiasp instructions.