CVE-2024-26991

KVM: x86/mmu: x86: Don't overflow lpage_info when checking attributes

References

Notes

 carnil> Introduced in 90b4fe17981e ("KVM: x86: Disallow hugepages when memory
 carnil> attributes are mixed"). Vulnerable versions: 6.8-rc1.

Bugs

Status

Branch Status
4.19-buster-security N/A "Vulnerable code not present"
4.19-upstream-stable N/A "Vulnerable code not present"
5.10-bullseye-security N/A "Vulnerable code not present"
5.10-upstream-stable N/A "Vulnerable code not present"
6.1-bookworm-security N/A "Vulnerable code not present"
6.1-upstream-stable N/A "Vulnerable code not present"
6.6-upstream-stable N/A "Vulnerable code not present"
6.8-upstream-stable released (6.8.8) [048cc4a028e635d339687ed968985d2d1669494c]
sid needed
upstream released (6.9-rc5) [992b54bd083c5bee24ff7cc35991388ab08598c4]