Name of the Vulnerable Software and Affected Versions Linux Kernel versions v5.16.3 through v5.16.5

Description The issue concerns a potential security vulnerability in the KVM (Kernel-based Virtual Machine) implementation for x86 architecture, specifically related to the handling of the kvm cpuid entry2 array after a KVM RUN operation and subsequent KVM SET CPUID or KVM SET CPUID2 call. The actual impact and attack plausibility have not yet been proven. It was introduced in version v5.16.3 and fixed in version v5.16.5.

Recommendations For Linux Kernel versions v5.16.3 through v5.16.5, update to version v5.16.5 or later to resolve the issue.