VDB
DEBIAN-CVE-2023-52639
DEBIAN-CVE-2023-52639
PUBLISHED
CVSS 4.699999809265137 MEDIUM
In the Linux kernel, the following vulnerability has been resolved: KVM: s390: vsie: fix race during shadow creation Right now it is possible to see gmap->private being zero in kvm_s390_vsie_gmap_notifier resulting in a crash. This is due to the fact that we add gmap->private == kvm after creation: static int acquire_gmap_shadow(struct kvm_vcpu *vcpu, struct vsie_page *vsie_page) { [...] gmap = gmap_shadow(vcpu->arch.gmap, asce, edat); if (IS_ERR(gmap)) return PTR_ERR(gmap); gmap->private = vcpu->kvm; Let children inherit the private field of the parent.
Risk Scores
CVSS v3.1
4.699999809265137
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | linux | 6.1.64-1, 6.1.69-1~bpo11+1, 6.1.76-1 |
| Debian:13 | linux | 0, 0, 0 |
| Debian:11 | linux | *, *, * |
| Debian:14 | linux | 0, 0, 0 |
Timeline
- Apr 3, 2024 CVE Published
- Apr 28, 2026 CVE Updated