CVE-2026-31558

Summary

In the Linux kernel, the following vulnerability has been resolved:

LoongArch: KVM: Make kvm_get_vcpu_by_cpuid() more robust

kvm_get_vcpu_by_cpuid() takes a cpuid parameter whose type is int, so cpuid can be negative. Let kvm_get_vcpu_by_cpuid() return NULL for this case so as to make it more robust.

This fix an out-of-bounds access to kvm_arch::phyid_map::phys_map[].

Affected Software

VendorProductVersion RangeStatus
LinuxLinux73516e9da512adc63ba3859fbd82a21f6257348f < 596c3f8069c4792f22fce8c4452f44410032d910affected
LinuxLinux73516e9da512adc63ba3859fbd82a21f6257348f < 878cf6acb4fd8ab4126cf9d369a5bb0e23123418affected
LinuxLinux73516e9da512adc63ba3859fbd82a21f6257348f < 47857b05bd50db01e211a1b6f513d57901cd3e6baffected
LinuxLinux73516e9da512adc63ba3859fbd82a21f6257348f < 2db06c15d8c7a0ccb6108524e16cd9163753f354affected
LinuxLinux6.10affected
LinuxLinux0 < 6.10unaffected
LinuxLinux6.12.80 <= 6.12.*unaffected
LinuxLinux6.18.21 <= 6.18.*unaffected
LinuxLinux6.19.11 <= 6.19.*unaffected
LinuxLinux7.0 <= *unaffected

Weaknesses

References