Memory Leak Issue in Linux Kernel Affecting KVM on SEV-ES Guests
CVE-2026-53345

Currently unrated

Key Information:

Vendor

Linux

Status
Vendor
CVE Published:
1 July 2026

What is CVE-2026-53345?

A memory leak vulnerability exists in the Linux kernel, specifically related to the KVM virtualization technology used for SEV-ES guests. This issue arises when memory is marked as dirty without an active virtual CPU (vCPU) during the virtual machine's destruction process. When a guest page remains writable across a user space exit without a subsequent KVM_RUN call, it can lead to a scenario where the memory is not correctly unmapped upon vCPU termination. As a result, a warning is triggered unnecessarily, although userspace should not reach the dirty ring in this situation. This vulnerability may result in degraded performance and system stability, highlighting the need for timely patching and attention to KVM configurations.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 033d39e41fc30f484f4e4f37fb4cd76b12cbb18e

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 66a8e7ddd901023c89a2733494d827eca3f9c1b0

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 343e95c8ecc40e0738975ef4ee24c0c35e800e6b

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.