CVE-2026-46076
Gravedad CVSS v3.1:
ALTA
Tipo:
No Disponible / Otro tipo
Fecha de publicación:
27/05/2026
Última modificación:
24/06/2026
Descripción
*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
KVM: nSVM: Raise #UD if unhandled VMMCALL isn&#39;t intercepted by L1<br />
<br />
Explicitly synthesize a #UD for VMMCALL if L2 is active, L1 does NOT want<br />
to intercept VMMCALL, nested_svm_l2_tlb_flush_enabled() is true, and the<br />
hypercall is something other than one of the supported Hyper-V hypercalls.<br />
When all of the above conditions are met, KVM will intercept VMMCALL but<br />
never forward it to L1, i.e. will let L2 make hypercalls as if it were L1.<br />
<br />
The TLFS says a whole lot of nothing about this scenario, so go with the<br />
architectural behavior, which says that VMMCALL #UDs if it&#39;s not<br />
intercepted.<br />
<br />
Opportunistically do a 2-for-1 stub trade by stub-ifying the new API<br />
instead of the helpers it uses. The last remaining "single" stub will<br />
soon be dropped as well.<br />
<br />
[sean: rewrite changelog and comment, tag for stable, remove defunct stubs]
Impacto
Puntuación base 3.x
7.90
Gravedad 3.x
ALTA
Productos y versiones vulnerables
| CPE | Desde | Hasta |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.2 (incluyendo) | 6.12.86 (excluyendo) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.13 (incluyendo) | 6.18.27 (excluyendo) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.19 (incluyendo) | 7.0.4 (excluyendo) |
Para consultar la lista completa de nombres de CPE con productos y versiones, ver esta página



