HOMEVULNERABILITIESCVE-2026-46147
NONE

CVE-2026-46147

Published: May 28, 2026· Updated: May 28, 2026

EPSS:0.02%probability of exploitation in 30 daysPercentile:4.3th

Official Description

In the Linux kernel, the following vulnerability has been resolved:

KVM: arm64: Fix pin leak and publication ordering in __pkvm_init_vcpu()

Two bugs exist in the vCPU initialisation path:

1. If a check fails after hyp_pin_shared_mem() succeeds, the cleanup

path jumps to 'unlock' without calling unpin_host_vcpu() or

unpin_host_sve_state(), permanently leaking pin references on the

host vCPU and SVE state pages.

Extract a register_hyp_vcpu() helper that performs the checks and

the store. When register_hyp_vcpu() returns an error, call

unpin_host_vcpu() and unpin_host_sve_state() inline before falling

through to the existing 'unlock' label.

2. register_hyp_vcpu() publishes the new vCPU pointer into

'hyp_vm->vcpus[]' with a bare store, allowing a concurrent caller

of pkvm_load_hyp_vcpu() to observe a partially initialised vCPU

object.

Ensure the store uses smp_store_release() and the load uses

smp_load_acquire(). While 'vm_table_lock' currently serialises the

store and the load, these barriers ensure the reader sees the fully

initialised 'hyp_vcpu' object even if there were a lockless path or

if the lock's own ordering guarantees were insufficient for nested

object initialization.

NVD Source

Technical Analysis

CVE-2026-46147 requires local access, meaning attackers must already have a foothold on the target system.

Exploitation requires some privileges, which limits the exposure to scenarios where an attacker has already gained initial access.

Affected Vendors & Products

Mentioned vendors (from description):
Linux
CPE data not yet available in NVD for this CVE.

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

All References (3)

Quick Facts

CVE IDCVE-2026-46147
SeverityNONE
CISA KEVNo
EPSS (30d)0.02%
PublishedMay 28, 2026

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2026-46147 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.