CVE-2026-46257
- Source
- https://cve.org/CVERecord?id=CVE-2026-46257
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46257.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2026-46257
- Downstream
- Published
- 2026-06-03T15:49:54.286Z
- Modified
- 2026-06-18T03:57:05.291550179Z
- Summary
- clocksource/drivers/timer-sp804: Fix an Oops when read_current_timer is called on ARM32 platforms where the SP804 is not registered as the sched_clock.
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
clocksource/drivers/timer-sp804: Fix an Oops when readcurrenttimer is called on ARM32 platforms where the SP804 is not registered as the sched_clock.
On SP804, the delay timer shares the same clkevt instance with schedclock. On some platforms, when sp804clocksourceandschedclockinit is called with useschedclock not set to 1, schedclkevt is not properly initialized. However, sp804registerdelaytimer is invoked unconditionally, and readcurrenttimer() subsequently calls sp804read on an uninitialized schedclkevt, leading to a kernel Oops when accessing sched_clkevt->value.
Declare a dedicated clkevt instance exclusively for delay timer, instead of sharing the same clkevt with schedclock. This ensures that readcurrenttimer continues to work correctly regardless of whether SP804 is selected as the schedclock.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46257.json" }- References
-
- https://git.kernel.org/stable/c/693b0b594b0f278bafa784984129c0c0f988e352
- https://git.kernel.org/stable/c/694921a93f3e3621e067afc545cedf6fe3b234a9
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46257.json
- https://nvd.nist.gov/vuln/detail/CVE-2026-46257
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git