Description

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Lock all vCPUs when synchronzing VMSAs for SNP launch finish Lock all vCPUs when synchronizing and encrypting VMSAs for SNP guests, as allowing userspace to manipulate and/or run a vCPU while its state is being synchronized would at best corrupt vCPU state, and at worst crash the host kernel. Opportunistically assert that vcpu->mutex is held when synchronizing its VMSA (the SEV-ES path already locks vCPUs).

INFO

Published Date :

2026-04-24T14:42:18.276Z

Last Modified :

2026-04-27T11:01:08.549Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-31591 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-31591.

URL Resource
https://git.kernel.org/stable/c/30fd9d8c82087742168db779929d8be0459b0716 cve-icon cve-icon
https://git.kernel.org/stable/c/4df77742e8b9a6b935bdf46f02fd0aca4d4ee7f5 cve-icon cve-icon
https://git.kernel.org/stable/c/c87938fc7d99a06a7e5477c45b4e5a4148f85d66 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026042415-CVE-2026-31591-4148@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-31591 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-31591 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact