KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation

MITRE NVD CVE.ORG JSON API Print: PDF PDF

Summary

CVECVE-2026-53277
StatePUBLISHED
AssignerLinux
Source PriorityCVE Program / NVD first with legacy fallback
Published2026-06-25 09:16:45 UTC
Updated2026-06-25 09:16:45 UTC
DescriptionIn the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Take the SRCU lock for page table walks in fault injection and AT emulation walk_s1() and kvm_walk_nested_s2() expect to be called while holding kvm->srcu to guard against memslot changes. While this is generally the case, __kvm_at_s12() and __kvm_find_s1_desc_level() call into the respective walkers without taking kvm->srcu. Fix by acquiring kvm->srcu prior to the table walk in both instances.

Vendor Declared Affected Products

SourceVendorProductVersionPlatforms
CNA Linux Linux affected be04cebf3e78874627dc1042991d5d504464a5cc 97706097f9b851cfe55c3b00b083dfc2bcf542bc git Not specified
CNA Linux Linux affected be04cebf3e78874627dc1042991d5d504464a5cc ec42b4ed1b072ea2d03f086061aa67bad6d8de39 git Not specified
CNA Linux Linux affected be04cebf3e78874627dc1042991d5d504464a5cc f2ca45b50d4216c9cc7ffabf50d9ad1932209251 git Not specified
CNA Linux Linux affected 6.12 Not specified
CNA Linux Linux unaffected 6.12 semver Not specified
CNA Linux Linux unaffected 6.18.36 6.18.* semver Not specified
CNA Linux Linux unaffected 7.0.13 7.0.* semver Not specified
CNA Linux Linux unaffected 7.1 * original_commit_for_fix Not specified

References

ReferenceSourceLinkTags
git.kernel.org/stable/c/97706097f9b851cfe55c3b00b083dfc2bcf542bc 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
git.kernel.org/stable/c/ec42b4ed1b072ea2d03f086061aa67bad6d8de39 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
git.kernel.org/stable/c/f2ca45b50d4216c9cc7ffabf50d9ad1932209251 416baaa9-dc9f-4396-8d5f-8c081fb06d67 git.kernel.org
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report