CVE-2026-23027 LoongArch: KVM: Fix kvm_device leak in kvm_pch_pic_destroy()

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix kvmdevice leak in kvmpchpicdestroy In kvmioctlcreatedevice, kvmdevice has allocated memory, kvmdevice-destroy seems to be supposed to free its kvmdevice struct, but kvmpchpicdestroy is not currently doing this...

kernel: KVM: arm64: Tear down vGIC on failed vCPU creation

A use-after-free flaw was found in KVM for arm64 in the Linux Kernel, if the kvmarchvcpucreate fails to share the vCPU page with the hypervisor. This vulnerability could even lead to a kernel information leak problem...

kernel: KVM: arm64: Tear down vGIC on failed vCPU creation

A use-after-free flaw was found in KVM for arm64 in the Linux Kernel, if the kvmarchvcpucreate fails to share the vCPU page with the hypervisor. This vulnerability could even lead to a kernel information leak problem...

kernel: KVM: arm64: Tear down vGIC on failed vCPU creation

A use-after-free flaw was found in KVM for arm64 in the Linux Kernel, if the kvmarchvcpucreate fails to share the vCPU page with the hypervisor. This vulnerability could even lead to a kernel information leak problem...

CVE-2025-71155

In the Linux kernel, the following vulnerability has been resolved: KVM: s390: Fix gmaphelperzaponepage again A few checks were missing in gmaphelperzaponepage, which can lead to memory corruption in the guest under specific circumstances. Add the missing checks...

CVE-2025-71155

CVE-2025-71155 concerns the Linux kernel KVM on s390 where gmap_helper_zap_one_page() had missing checks that could lead to memory corruption in a guest under specific circumstances. The connected documents confirm the vulnerability and describe the root cause as incomplete validation within that...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004917)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004917 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0 Don't BUG/WARN on interrupt...

ROS-20260121-73-0015

A vulnerability in the KVM component of the Linux operating system kernel is related to memory initialization errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

MiracleLinux 8 : kernel-4.18.0-305.25.1.el8_4 (AXSA:2021-2534:24)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2534:24 advisory. kernel: use-after-free in drivers/infiniband/core/ucma.c ctx use-after-free CVE-2020-36385 kernel: out-of-bounds write due to a heap buffer overflow...

MiracleLinux 4 : qemu-kvm-0.12.1.2-2.491.AXS4.7 (AXSA:2017-1309:02)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1309:02 advisory. KVM for Kernel-based Virtual Machine is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines running...

MiracleLinux 4 : qemu-kvm-0.12.1.2-2.448.AXS4.2 (AXSA:2015-125:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2015-125:01 advisory. KVM for Kernel-based Virtual Machine is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines running...

MiracleLinux 4 : qemu-kvm-0.12.1.2-2.415.AXS4.8 (AXSA:2014-285:04)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-285:04 advisory. KVM for Kernel-based Virtual Machine is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000996)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000996 advisory. The WRMSR processing functionality in the KVM subsystem in the Linux kernel through 3.17.2 does not properly handle the writing of a non-canonical address to a...

MiracleLinux 4 : qemu-kvm-0.12.1.2-2.448.AXS4.4 (AXSA:2015-153:03)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2015-153:03 advisory. KVM for Kernel-based Virtual Machine is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines running...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003975)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003975 advisory. A NULL pointer dereference flaw was found in the Linux kernels KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. Thi...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004187)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004187 advisory. An issue was discovered in the Linux kernel before 5.8. arch/x86/kvm/svm/svm.c allows a setmemoryregiontest infinite loop for certain nested page faults, aka...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000804)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000804 advisory. Buffer overflow in virt/kvm/irqcomm.c in the KVM subsystem in the Linux kernel before 3.2.24 allows local users to cause a denial of service crash and possibly execu...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000901)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000901 advisory. arch/x86/kvm/vmx.c in the Linux kernel through 4.9 mismanages the BP and OF exceptions, which allows guest OS users to cause a denial of service guest OS crash by...

MiracleLinux 7 : kernel-3.10.0-957.12.1.el7 (AXSA:2019-3871:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-3871:03 advisory. Kernel: KVM: potential use-after-free via kvmioctlcreatedevice CVE-2019-6974 Kernel: KVM: nVMX: use-after-free of the hrtimer for emulation of the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004317)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004317 advisory. A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down usually due to Secure Boot guest system running on to...