ROS-20260414-73-0029

A vulnerability in the nestedsvmvmexit function of the arch/x86/kvm/svm/nested.c module of the virtualization subsystem on the x86 platform of the Linux operating system kernel is related to an uncontrolled reachable assertion. Exploitation of the vulnerability could allow an attacker to cause a...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000543)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000543 advisory. The apicgettmcct function in arch/x86/kvm/lapic.c in the KVM subsystem in the Linux kernel through 3.12.5 allows guest OS users to cause a denial of service...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001017)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001017 advisory. arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the...

EulerOS Virtualization 2.13.0 : kernel (EulerOS-SA-2025-2581)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : KVM: VMX: Do all initialization before exposing /dev/kvm to userspaceCVE-2022-49932 drivers:md:fix a potential use-after-free...

USN-7907-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - ACPI drivers; - Hardware monitoring drivers; - InfiniBand drivers; - Mailbox framework; -...

EulerOS 2.0 SP13 : kernel (EulerOS-SA-2025-2447)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : KVM: VMX: Do all initialization before exposing /dev/kvm to userspaceCVE-2022-49932 drivers:md:fix a potential use-after-free bugCVE-2022-50022...

The vulnerability of the kvm_riscv_vcpu_sbi_init() function in the arch/riscv/kvm/vcpu_sbi.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the kvmriscvvcpusbiinit function in the arch/riscv/kvm/vcpusbi.c module of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protect...

The vulnerability of the kvm_page_track_cleanup() function in the arch/x86/kvm/mmu/pageTrack.c module of the virtualization subsystem on the Linux kernel-based x86 platform allows a attacker to cause a service failure.

The vulnerability of the kvmpagetrackcleanup function in the arch/x86/kvm/mmu/pageTrack.c module of the virtualization subsystem on the Linux kernel-based x86 platform is related to the dereferencing of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service...

The vulnerability of the module parameter function module arch/x86/kvm/vmx/vmx.c in the virtualization subsystem of the Linux operating system’s x86 kernel allows a attacker to cause a service failure.

The vulnerability of the module parameter function module arch/x86/kvm/vmx/vmx.c in the virtualization subsystem of the Linux operating system’s x86 kernel is related to code errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

kernel: Linux kernel KVM: Denial of Service due to incorrect kvm_arm_init failure handling in finalize_pkvm

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM for arm64 architectures. This vulnerability arises from a lack of synchronization between the finalizepkvm and kvmarminit initialization calls. A local attacker with low privileges could exploit this by triggering a scenario...

The vulnerability of the KVM virtualization subsystem in AMD Secure Encrypted Virtualization (SEV) in the virt/kvm/kvm_main.c kernel of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the KVM virtualization subsystem in AMD Secure Encrypted Virtualization SEV in the virt/kvm/kvmmain.c kernel of the Linux operating system is related to a breach of processor cache integrity. Exploiting this vulnerability could allow an attacker to trigger a service failure...

SUSE CVE-2020-36313

An issue was discovered in the Linux kernel before 5.7. The KVM subsystem allows out-of-range access to memslots after a deletion, aka CID-0774a964ef56. This affects arch/s390/kvm/kvm-s390.c, include/linux/kvmhost.h, and virt/kvm/kvmmain.c...

SUSE CVE-2022-39189

An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush operations are mishandled in certain KVMVCPUPREEMPTED situations...

PT-2022-6256 · Linux +9 · Linux Kernel +9

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 6.1-rc6 Description: A race condition in the x86 KVM subsystem allows guest OS users to cause a denial of service, resulting in a host OS crash or host OS memory corruption when nested virtualisation and the TDP...

kernel: KVM: NULL pointer dereference in kvm_dirty_ring_push in virt/kvm/dirty_ring.c

A NULL pointer dereference issue was found in KVM when releasing a vCPU with dirty ring support enabled. This flaw allows an unprivileged local attacker on the host to issue specific ioctl calls, causing a kernel oops condition that results in a denial of service...

The vulnerability in the arch/x86/kvm/lapic.c component of the KVM virtualization subsystem in the Linux operating system’s kernel allows a attacker to cause a service failure.

The vulnerability in the kvmfreelapic function of the arch/x86/kvm/lapic.c component of the KVM virtualization subsystem in the Linux operating system is related to incomplete cleanup of temporary or auxiliary resources. Exploiting this vulnerability can allow an attacker to cause a service failu...

The vulnerability of the get_user_pages_fast() function implementation in the KVM virtualization subsystem of Linux operating systems allows a attacker to cause a service failure or gain increased privileges.

The vulnerability of the getuserpagesfast function implementation in the KVM virtualization subsystem of Linux operating systems is related to writing data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure or increase their privileges...

PT-2022-2848

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.17-rc1 Description A NULL pointer dereference was found in the Linux kernel's KVM when dirty ring logging is enabled without an active vCPU context. An unprivileged local attacker on the host may use this flaw ...

PT-2021-8007 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the use of memory after it has been freed during the registration of input/output devices in the Kernel-based Virtual Machine KVM subsystem of the Linux kernel...

The vulnerability of the vcpu_scan_ioapic function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the vcpuscanioapic function arch/x86/kvm/x86.c in the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure due to a system call to the Kernel-Based Virtual Machine KVM...