CVE-2026-46316
Published Jun 9, 2026
Last updated 3 days ago
AI description
CVE-2026-46316, also known as "ITScape," is a vulnerability found in the Linux kernel's Kernel-based Virtual Machine (KVM) for ARM64 systems. Specifically, the flaw resides within the vgic-its (Virtual Generic Interrupt Controller – Interrupt Translation Service) component. This issue stems from a race condition that causes the translation cache's reference to an entry to be incorrectly dropped more than once during cache invalidation, leading to a "double-put" scenario and a use-after-free condition. This vulnerability allows a malicious guest virtual machine to escape its isolated environment and execute arbitrary commands on the host system with full kernel (root) privileges. Unlike typical virtualization escapes that target user-space components, ITScape exists entirely within the in-kernel KVM implementation, bypassing standard user-space protections. The exploit can be triggered through guest-side actions, such as crafted guest workloads performing specific GIC/ITS memory-mapped I/O operations, and a proof-of-concept exploit has been publicly released. Affected Linux kernel versions range from April 2024 to early June 2026.
- Description
- In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Drop the translation cache reference only for the erased entry vgic_its_invalidate_cache() walks the per-ITS translation cache with xa_for_each() and drops the cache's reference on each entry with vgic_put_irq(). It puts the iterated pointer, though, rather than the value returned by xa_erase(). The function is called from contexts that do not exclude one another: the ITS command handlers hold its_lock, the GITS_CTLR write path holds cmd_lock, and the path that clears EnableLPIs in a redistributor's GICR_CTLR holds neither. Two or more of them can drain the same cache concurrently, and if each one observes the same entry, erases it and then puts it, the single reference the cache holds on that entry is dropped more than once. The entry can then be freed while an ITE still maps it. xa_erase() is atomic and returns the previous entry, so put only the entry that this context actually removed. The cache reference is then dropped exactly once per entry even when the invalidations run concurrently, and the behavior is unchanged when only one context runs.
- Source
- 416baaa9-dc9f-4396-8d5f-8c081fb06d67
- NVD status
- Received
- Hype score
- Not currently trending
New RL research: ITScape (CVE-2026-46316) is an ARM64 KVM guest-to-host escape affecting kernels from April 2024 through June 5, 2026. Two YARA rules published. Patch is in mainline. More variants expected. Detection details → https://t.co/J5jPf4f2JD #YARA #CloudSecurity
@ReversingLabs
12 Jun 2026
98 Impressions
2 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
ITScape (CVE-2026-46316): New guest-to-host escape in KVM/arm64 enables host kernel execution from untrusted guests. Critical threat to multi-tenant ARM64 cloud environments with direct compromise potential. Key technical details: • Race condition in vgic_its_invalidate_cache(
@DFIR_Radar
11 Jun 2026
186 Impressions
0 Retweets
0 Likes
0 Bookmarks
2 Replies
0 Quotes
KVM/arm64環境において、ゲスト仮想マシンからホストへ脱出できる重大な脆弱性CVE-2026-46316の詳細とPoCコードが公開された。成功した場合、攻撃者はホスト上でカーネル権限(root権限)のコードを実行できる可
@yousukezan
11 Jun 2026
1975 Impressions
1 Retweet
13 Likes
7 Bookmarks
0 Replies
0 Quotes
The first public guest-to-host escape for KVM on arm64 dropped today. CVE-2026-46316. A guest running at EL1 issues a sequence of GIC ITS register writes. KVM handles them on two CPUs at once, and both paths run the put on the same refcounted ITS object - a double free in the
@SecureChap
10 Jun 2026
81 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes