CVE-2026-47261: Cranelift Spectre Bypass Libcall
JIT compilation delegates bounds-checked memory operations to a runtime libcall instead of emitting natively-checked inline JIT instructions. Standard libcalls using conditional branches are vulnerable to Spectre v1 speculative execution bypasses when compiled. The JIT should instead emit inline bounds checks paired with proper speculative mitigating instruc
Rustβgreprules fetch cve-2026-47261-cranelift-spectre-bypass-libcall --engine opengrepDescription
JIT compilation delegates bounds-checked memory operations to a runtime libcall instead of emitting natively-checked inline JIT instructions. Standard libcalls using conditional branches are vulnerable to Spectre v1 speculative execution bypasses when compiled. The JIT should instead emit inline bounds checks paired with proper speculative mitigating instruc
Community feedback
0 signals from signed-in users.
- Useful
- 0
- False positive
- 0
- Metadata
- 0