CVE-2026-46082 PUBLISHED

KVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0

Assigner: Linux
Reserved: 13.05.2026 Published: 27.05.2026 Updated: 27.05.2026

In the Linux kernel, the following vulnerability has been resolved:

KVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0

INVLPGA should cause a #UD when EFER.SVME is not set. Add a check to properly inject #UD when EFER.SVME=0.

[sean: tag for stable@]

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from ff092385e8285c03d8b148f42f46f98c5f4becd5 to 3ac9d4241d205f5d0df06358349ca718ebb0fa12 (excl.)
  • affected from ff092385e8285c03d8b148f42f46f98c5f4becd5 to 643125b66ffc1147c66616b749475ba9efb15971 (excl.)
  • affected from ff092385e8285c03d8b148f42f46f98c5f4becd5 to c15392ed9e49c1a16b4d3a3ccf1b3bf2318a6c28 (excl.)
  • affected from ff092385e8285c03d8b148f42f46f98c5f4becd5 to ee24928ecd85db4b68ed111e91fef36af0ca37b0 (excl.)
  • affected from ff092385e8285c03d8b148f42f46f98c5f4becd5 to d99df02ff427f461102230f9c5b90a6c64ee8e23 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 2.6.32 is affected
  • unaffected from 0 to 2.6.32 (excl.)
  • unaffected from 6.6.140 to 6.6.* (incl.)
  • unaffected from 6.12.86 to 6.12.* (incl.)
  • unaffected from 6.18.27 to 6.18.* (incl.)
  • unaffected from 7.0.4 to 7.0.* (incl.)
  • unaffected from 7.1-rc1 to * (incl.)

References