CVE-2023-54092
Index Handling Flaw in Linux KVM s390 Causes VM Crashes
Publication date: 2025-12-24
Last updated on: 2025-12-24
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves the Linux kernel's KVM on s390 architecture where the index field of the struct page corresponding to a guest ASCE (Address Space Control Element) was not properly set to 0 when replaced. This incorrect index can cause wrong addresses to be used during page table entry invalidations, potentially leading to validity intercepts and a virtual machine crash if the prefix is unmapped and the notifier is called with the wrong address.
How can this vulnerability impact me? :
The vulnerability can cause virtual machines running on the affected Linux kernel with KVM on s390 architecture to crash due to invalid address handling during ASCE replacement. This can lead to system instability and potential downtime for services running inside the virtual machines.