CVE-2026-23215

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw related to hypercall clobbers within the x86/vmware component. Specifically, the QEMU VMware mouse emulation incorrectly clears the upper 32 bits of the rdi register, which the kernel uses to store a pointer. This results in a page fault when the register is dereferenced after a hypercall, such as vmware hypercall3() and vmware hypercall4(). The issue stems from the QEMU vmmouse driver saving and restoring register state using a "uint32 t data[6]" array, leading to the loss of the upper bits of the register value. The kernel workaround marks rdi and rsi as clobbered for the affected hypercalls to prevent the issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.