Description

In the Linux kernel, the following vulnerability has been resolved: mshv: Fix infinite fault loop on permission-denied GPA intercepts Prevent infinite fault loops when guests access memory regions without proper permissions. Currently, mshv_handle_gpa_intercept() attempts to remap pages for all faults on movable memory regions, regardless of whether the access type is permitted. When a guest writes to a read-only region, the remap succeeds but the region remains read-only, causing immediate re-fault and spinning the vCPU indefinitely. Validate intercept access type against region permissions before attempting remaps. Reject writes to non-writable regions and executes to non-executable regions early, returning false to let the VMM handle the intercept appropriately. This also closes a potential DoS vector where malicious guests could intentionally trigger these fault loops to consume host resources.

INFO

Published Date :

2026-05-06T07:40:27.453Z

Last Modified :

2026-05-06T07:40:27.453Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2026-43096 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-43096.

URL Resource
https://git.kernel.org/stable/c/02226839079ccc558820a3b25c4c46812927b4ba cve-icon cve-icon
https://git.kernel.org/stable/c/16cbec24897624051b324aa3a85859c38ca65fde cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2026050619-CVE-2026-43096-b0a3@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2026-43096 cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-43096 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System