CVE-2026-31591

MEDIUM

KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish Lock all vCPUs when synchronizing and encrypting VMSAs for SNP guests, as allowing userspace to manipulate and/or run a vCPU while its state is being synchronized would at best corrupt vCPU state, and at worst crash the host kernel. Opportunistically assert that vcpu->mutex is held when synchronizing its VMSA (the SEV-ES path already locks vCPUs).

References (4)

Core 4

Core References

https://git.kernel.org/stable/c/30fd9d8c82087742168db779929d8be0459b0716

https://git.kernel.org/stable/c/4df77742e8b9a6b935bdf46f02fd0aca4d4ee7f5

https://git.kernel.org/stable/c/c87938fc7d99a06a7e5477c45b4e5a4148f85d66

https://git.kernel.org/stable/c/cb923ee6a80f4e604e6242a4702b59251e61a380

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published

Products (14)

Linux/Linux < 6.11

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 30fd9d8c82087742168db779929d8be0459b0716

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 4df77742e8b9a6b935bdf46f02fd0aca4d4ee7f5

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - c87938fc7d99a06a7e5477c45b4e5a4148f85d66

Linux/Linux 6.11

Linux/Linux 6.18.24 - 6.18.*

Linux/Linux 6.19.14 - 6.19.*

Linux/Linux 7.0.1 - 7.0.*

Linux/Linux 7.1-rc1

Linux/Linux ad27ce155566f2b4400fa865859834592bd18777 - 30fd9d8c82087742168db779929d8be0459b0716

... and 4 more

Published Apr 24, 2026

Tracked Since Apr 24, 2026