4 matches found
CVE-2026-53360
The CVE affects the Linux kernel KVM-SEV/SNP path: when GHCB v2+ is in use, an OOB/heap-privacy flaw arises because end_entry is validated only against VMGEXIT_PSC_MAX_COUNT (253) instead of the actual buffer size, allowing a guest to read/write adjacent kmalloc-cg-32 objects via VMGEXITs. This c...
PT-2026-55698
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the KVM SEV implementation where the software scratch area is not required to reside in the GHCB shared buffer when GHCB v2+ is used. This allows a malicious SNP guest...
CVE-2025-38560
CVE-2025-38560 relates to the Linux kernel x86/sev SNP memory validation. The vulnerability requires a cache-line eviction mitigation when memory is validated after changing a page state to private. The documented mitigation is to touch the first and last byte of each 4K page being validated. If ...
CVE-2023-52659 x86/mm: Ensure input to pfn_to_kaddr() is treated as a 64-bit type
In the Linux kernel, the following vulnerability has been resolved: x86/mm: Ensure input to pfntokaddr is treated as a 64-bit type On 64-bit platforms, the pfntokaddr macro requires that the input value is 64 bits in order to ensure that valid address bits don't get lost when shifting that input ...