CVE-2025-71155
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2026-01-23
Last updated on: 2026-02-26
Assigner: kernel.org
Description
Description
In the Linux kernel, the following vulnerability has been resolved:
KVM: s390: Fix gmap_helper_zap_one_page() again
A few checks were missing in gmap_helper_zap_one_page(), which can lead
to memory corruption in the guest under specific circumstances.
Add the missing checks.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 6.17.4 (inc) to 6.18 (exc) |
| linux | linux_kernel | From 6.18 (inc) to 6.18.4 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-787 | The product writes data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is in the Linux kernel's KVM subsystem for s390 architecture. It involves missing checks in the function gmap_helper_zap_one_page(), which can lead to memory corruption in the guest virtual machine under specific circumstances. The issue was fixed by adding the missing checks.
How can this vulnerability impact me? :
The vulnerability can cause memory corruption in the guest virtual machine, which may lead to instability, crashes, or potential security risks within the affected virtual environment.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70