CVE-2026-31553

UNKNOWN 0.0

KVM: arm64: Fix the descriptor address in __kvm_at_swap_desc()

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix the descriptor address in __kvm_at_swap_desc() Using "(u64 __user *)hva + offset" to get the virtual addresses of S1/S2 descriptors looks really wrong, if offset is not zero. What we want to get for swapping is hva + offset, not hva + offset*8. ;-) Fix it.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Apr 24, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

f6927b41d57390c597a126063e2e518911976878 < 4307e05e568782fc92eff651b09ee5dee88a058d f6927b41d57390c597a126063e2e518911976878 < 0496acc42fb51eee040b5170cec05cec41385540

Linux / Linux

6.19

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/4307e05e568782fc92eff651b09ee5dee88a058d git.kernel.org: https://git.kernel.org/stable/c/0496acc42fb51eee040b5170cec05cec41385540