Description

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Make kvm_get_vcpu_by_cpuid() more robust kvm_get_vcpu_by_cpuid() takes a cpuid parameter whose type is int, so cpuid can be negative. Let kvm_get_vcpu_by_cpuid() return NULL for this case so as to make it more robust. This fix an out-of-bounds access to kvm_arch::phyid_map::phys_map[].

INFO

Published Date :

2026-04-24T14:35:41.209Z

Last Modified :

2026-04-27T14:04:04.707Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-31558 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-31558.

URL Resource
https://git.kernel.org/stable/c/2db06c15d8c7a0ccb6108524e16cd9163753f354 cve-icon cve-icon
https://git.kernel.org/stable/c/47857b05bd50db01e211a1b6f513d57901cd3e6b cve-icon cve-icon
https://git.kernel.org/stable/c/596c3f8069c4792f22fce8c4452f44410032d910 cve-icon cve-icon
https://git.kernel.org/stable/c/878cf6acb4fd8ab4126cf9d369a5bb0e23123418 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026042457-CVE-2026-31558-1140@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-31558 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-31558 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System