CVE-2026-46131

A flaw was found in the Linux kernel's KVM Kernel-based Virtual Machine x86 virtualization module. An incorrect check for nested EPT/NPT Nested Extended Page Tables/Nested Nested Page Tables in slow flush hypercalls could lead to improper handling of L2 guests. This vulnerability arises because t...

PT-2026-40690

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Set/clear CR8 write interception when AVIC is deactivated Explicitly set/clear CR8 write interception when AVIC is deactivated to fix a bug where KVM leaves the interception enabled after AVIC is activated. E.g. if KVM...

RLSA-2023:6980 Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update

Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...

CVE-2026-0029

CVE-2026-0029 involves memory corruption in __pkvm_init_vm (pkvm.c) of the kernel, caused by a logic error, enabling local privilege escalation with no user interaction required. The initial description provides no exploitation details, no patch/version info, and no remediation steps. Connected d...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003975)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003975 advisory. A NULL pointer dereference flaw was found in the Linux kernels KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. Thi...

EUVD-2025-23714

Malicious code in bioql PyPI...

CVE-2025-54652

Path traversal vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization module...

CVE-2025-54655

Race condition vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality and integrity of the virtualization graphics module...

CVE-2025-54655

Race condition vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality and integrity of the virtualization graphics module...

CVE-2025-54652

Path traversal vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization module...

CVE-2025-54655

Race condition vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality and integrity of the virtualization graphics module...

CVE-2025-54652

Huawei HarmonyOS exposes a path traversal vulnerability in its virtualization base module. The issue allows local attackers with Low privileges and no user interaction to exploit via path traversal, potentially compromising confidentiality of the virtualization module. Multiple sources (NVD, Red ...

CVE-2025-54652

Path traversal vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization module...

PT-2025-32010 · Unknown · Virtualization Base Module

Name of the Vulnerable Software and Affected Versions: versions prior to 2025 Description: A path traversal vulnerability exists in the virtualization base module. Successful exploitation of this issue may affect the confidentiality of the virtualization module. Recommendations: At the moment,...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the KVM module failing to properly handle the high 5 bits of the CR3 register when loading the PDPTEs of a...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure of the KVM:arm64 component to ensure that no vCPU pointer points to the redistributor region when ...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an error in the x86/kvm module...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an error in the x86/kvm module...

kernel: wifi: iwlwifi: dvm: Fix memcpy: detected field-spanning write backtrace

A vulnerability was discovered in the Intel wireless iwlwifi driver in the Linux kernel that could lead to a buffer overflow in the Driver Virtualization Module key handling code. When processing a received TKIP key that includes MIC rx/tx components, the driver did not adequately limit the amoun...

kernel: NULL pointer dereference in x86_emulate_insn may lead to DoS

A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU...