{"schema_version":"1.7.2","id":"OESA-2026-1470","modified":"2026-02-28T12:46:07Z","published":"2026-02-28T12:46:07Z","upstream":["CVE-2026-23085"],"summary":"kernel security update","details":"The Linux Kernel, the operating system core itself.\r\n\r\nSecurity Fix(es):\n\nA memory address truncation vulnerability exists in the irqchip/gic-v3-its driver of the Linux kernel. On 32-bit ARM machines with CONFIG_ARM_LPAE enabled, when using larger VMSPLIT configurations, lowmem allocations may be backed by physical memory addresses above the 32-bit address limit. The GICv3 driver allocates the 'itt' object using GFP_KERNEL. Since all memory below the 4GB physical address limit is in ZONE_DMA in this configuration, kmalloc() defaults to higher addresses in ZONE_NORMAL. However, the driver stores these physical addresses in 32-bit 'unsigned long' variables, causing the high addresses to be truncated, which leads to system crashes.(CVE-2026-23085)","affected":[{"package":{"ecosystem":"openEuler:22.03-LTS-SP4","name":"kernel","purl":"pkg:rpm/openEuler/kernel&distro=openEuler-22.03-LTS-SP4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.10.0-302.0.0.205.oe2203sp4"}]}],"ecosystem_specific":{"aarch64":["bpftool-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","bpftool-debuginfo-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","kernel-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","kernel-debuginfo-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","kernel-debugsource-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","kernel-devel-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","kernel-headers-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","kernel-source-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","kernel-tools-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","kernel-tools-debuginfo-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","kernel-tools-devel-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","perf-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","perf-debuginfo-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","python3-perf-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm","python3-perf-debuginfo-5.10.0-302.0.0.205.oe2203sp4.aarch64.rpm"],"src":["kernel-5.10.0-302.0.0.205.oe2203sp4.src.rpm"],"x86_64":["bpftool-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","bpftool-debuginfo-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","kernel-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","kernel-debuginfo-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","kernel-debugsource-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","kernel-devel-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","kernel-headers-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","kernel-source-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","kernel-tools-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","kernel-tools-debuginfo-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","kernel-tools-devel-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","perf-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","perf-debuginfo-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","python3-perf-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm","python3-perf-debuginfo-5.10.0-302.0.0.205.oe2203sp4.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-1470"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-23085"}],"database_specific":{"severity":"Medium"}}