CVE-2026-31593

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the KVM component regarding SEV (Secure Encrypted Virtualization). The system fails to reject attempts to synchronize the vCPU state to its associated VMSA (Virtual Machine Save Area) if the vCPU has already been launched and the VMSA is encrypted. On hosts with SNP (Secure Nested Paging) enabled, accessing this guest-private memory triggers an RMP (Reverse Map Table) page fault, which leads to a host kernel panic. This occurs within the sev es sync vmsa() function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.