Kvm · Kvm · CVE-2021-22543
**Name of the Vulnerable Software and Affected Versions**
Linux (affected versions not specified)
**Description**
The issue is caused by improper handling of VM IO|VM PFNMAP vmas in KVM, which can bypass RO checks and lead to pages being freed while still accessible by the VMM and guest. This allows users with the ability to start and control a VM to read/write random pages of memory, resulting in local privilege escalation.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.