Linux Kernel s390 Current Stack Pointer Vulnerability Stack Corruption

Vulnerability

A vulnerability in the Linux kernel on the s390 architecture has been addressed. The issue arose because a recent commit made the current stack pointer a global register variable, similar to other architectures. This change exposed a long-standing bug in GCC that could lead to stack corruption, as certain older GCC versions generated faulty code. The vulnerability is particularly relevant because the minimum required GCC version to build the kernel is 5.1, leaving older versions unfixable. The kernel now avoids using global register variables for the current stack pointer on s390 to prevent these stack corruption issues.

Impact

The vulnerability could lead to stack corruption, potentially allowing for arbitrary code execution or causing other unintended behavior by disrupting the normal stack operations.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

8.3

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.3

remediation

8.3

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel s390 Current Stack Pointer Vulnerability Stack Corruption

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating