Description
In the Linux kernel, the following vulnerability has been resolved:

arm64: errata: Mitigate TLBI errata on various Arm CPUs

A number of CPUs developed by Arm suffer from errata whereby a broadcast
TLBI;DSB sequence may complete before the global observation of writes
which are translated by an affected TLB entry.

These errata ONLY affect the completion of memory accesses which have
been translated by an invalidated TLB entry, and these errata DO NOT
affect the actual invalidation of TLB entries. TLB entries are removed
correctly.

This issue has been assigned CVE ID CVE-2025-10263.

To mitigate this issue, Arm recommends that software follows any
affected TLBI;DSB sequence with an additional TLBI;DSB, which will
ensure that all memory write effects affected by the first TLBI have
been globally observed. The additional TLBI can use any operation that
is broadcast to affected CPUs, and the additional DSB can use any option
that is sufficient to complete the additional TLBI.

The ARM64_WORKAROUND_REPEAT_TLBI workaround is sufficient to mitigate
the issue. Enable this workaround for affected CPUs, and update the
silicon errata documentation accordingly.

Note that due to the manner in which Arm develops IP and tracks errata,
some CPUs share a common erratum number.
Published: 2026-07-01
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a hardware erratum that affects certain Arm CPUs. In the Linux kernel, the TLBI;DSB sequence may complete before all memory writes translated by an invalidated TLB entry are globally observed. As a result, memory accesses that rely on the newly invalidated TLB may read stale data, leading to data corruption or unexpected behavior. The erratum does not compromise the TLB invalidation itself; it only compromises the consistency and integrity of memory for processes that depend on precise ordering.

Affected Systems

All Linux kernel deployments running on affected Arm CPUs before the TLBI workaround is applied. This includes Arm64 builds of the Linux kernel where TLB invalidation occurs during context switches, load balancing, or memory hotplug operations. The specific CPU models are not enumerated in the CVE, but the erratum affects a range of Arm CPUs that share a common erratum number.

Risk and Exploitability

The risk level is moderate to low from a security standpoint. The CVSS score is not available, and the EPSS score is not published. The vulnerability is not listed in CISA's KEV catalog. Because this is a hardware erratum, remote exploitation is unlikely; the attack vector would require privileged access to the kernel or physical control. The mitigation consists of enabling the ARM64_WORKAROUND_REPEAT_TLBI workaround or applying a kernel update that includes the workaround, which adds an additional TLBI;DSB sequence after TLB invalidation to ensure global observation of memory writes.

Generated by OpenCVE AI on July 1, 2026 at 18:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to the latest Linux kernel version that includes the ARM64_WORKAROUND_REPEAT_TLBI fix.
  • Enable the ARM64_WORKAROUND_REPEAT_TLBI kernel configuration option for affected CPUs.
  • Verify that the affected CPUs are identified and that the workaround applies by consulting Arm's errata documentation.

Generated by OpenCVE AI on July 1, 2026 at 18:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 01 Jul 2026 15:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-752
CWE-754

Wed, 01 Jul 2026 13:45:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: arm64: errata: Mitigate TLBI errata on various Arm CPUs A number of CPUs developed by Arm suffer from errata whereby a broadcast TLBI;DSB sequence may complete before the global observation of writes which are translated by an affected TLB entry. These errata ONLY affect the completion of memory accesses which have been translated by an invalidated TLB entry, and these errata DO NOT affect the actual invalidation of TLB entries. TLB entries are removed correctly. This issue has been assigned CVE ID CVE-2025-10263. To mitigate this issue, Arm recommends that software follows any affected TLBI;DSB sequence with an additional TLBI;DSB, which will ensure that all memory write effects affected by the first TLBI have been globally observed. The additional TLBI can use any operation that is broadcast to affected CPUs, and the additional DSB can use any option that is sufficient to complete the additional TLBI. The ARM64_WORKAROUND_REPEAT_TLBI workaround is sufficient to mitigate the issue. Enable this workaround for affected CPUs, and update the silicon errata documentation accordingly. Note that due to the manner in which Arm develops IP and tracks errata, some CPUs share a common erratum number.
Title arm64: errata: Mitigate TLBI errata on various Arm CPUs
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-07-01T13:32:30.246Z

Reserved: 2026-06-09T07:44:35.400Z

Link: CVE-2026-53354

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-01T19:15:06Z

Weaknesses
  • CWE-752
  • CWE-754

    Improper Check for Unusual or Exceptional Conditions