CVE-2026-31483

Source
https://cve.org/CVERecord?id=CVE-2026-31483
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-31483.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-31483
Downstream
Related
Published
2026-04-22T13:54:09.561Z
Modified
2026-07-11T03:55:37.878986153Z
Summary
s390/syscalls: Add spectre boundary for syscall dispatch table
Details

In the Linux kernel, the following vulnerability has been resolved:

s390/syscalls: Add spectre boundary for syscall dispatch table

The s390 syscall number is directly controlled by userspace, but does not have an arrayindexnospec() boundary to prevent access past the syscall function pointer tables.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31483.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
56e62a73702836017564eaacd5212e4d0fa1c01d
Fixed
3c3b97064764899c39a0abbd35a6caa031e70333
Fixed
1cb9c7bc9025c637564fabc7fcc3c9343949e310
Fixed
7a5260fbc6e79a1595328ec5c6aa3f937504a1f0
Fixed
f8c444b918d639e1f9a621ee20fe481c1d10dfc4
Fixed
87776f02449e3bded95b2ccbd6b012e9ae64e6f3
Fixed
4d05dd18d867d58c6952a3bc260d244899da7256
Fixed
48b8814e25d073dd84daf990a879a820bad2bcbd

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-31483.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.12.0
Fixed
5.15.203
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.168
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.131
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.80
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.21
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.11

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-31483.json"