CVE-2026-23401

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.0-rc2-eafebd2d2ab0-sink-vm #319

Description A flaw was discovered in the Linux kernel's KVM component related to the handling of shadow-present SPTEs (Stale Page Table Entries) during the installation of emulated MMIO (Memory Mapped I/O) SPTEs. Specifically, the vulnerability occurs when an MMIO SPTE is installed without first dropping or zapping the existing shadow-present SPTE. This can lead to issues when host userspace modifies a shadowed gPTE to switch from a memslot to emulated MMIO, and the guest subsequently triggers a relevant page fault. The issue was identified during testing and is triggered by writes to guest memory outside the scope of KVM.

Recommendations Update the Linux kernel to a version newer than 7.0.0-rc2-eafebd2d2ab0-sink-vm #319.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALSA-2026:13577

ALSA-2026:13578

ALSA-2026:19568

ALSA-2026:19569

CVE-2026-23401

ECHO-2CB8-E715-E73B

OESA-2026-1861

OESA-2026-1862

OESA-2026-1863

OESA-2026-1864

RHSA-2026:13577

RHSA-2026:13578

RHSA-2026:13932

RHSA-2026:13936

RHSA-2026:14137

RHSA-2026:14230

RHSA-2026:14339

RHSA-2026:15883

RHSA-2026:19521

RHSA-2026:19568

RHSA-2026:19569

RHSA-2026:19875

RHSA-2026:20593

Affected Products

Linux Kernel

Rocky Linux

CVE-2026-23401

Related Identifiers

Affected Products

References · 145