SB20260406110 - Improper Initialization in Linux kernel hyp nvhe

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper Initialization (CVE-ID: CVE-2026-23425)

The vulnerability allows a local user to cause state corruption.

The vulnerability exists due to improper initialization in ID register initialization for non-protected pKVM guests when initializing the hypervisor kvm structure from the host state. A local user can create a non-protected VM to cause state corruption.

The issue affects non-protected arm64 pKVM guests because the ID register initialized flag can be copied without the underlying id_regs data being initialized, causing feature checks at EL2 to fail and some system registers to not be saved or restored during the world switch.

Remediation

Install update from vendor's website.

References

• https://git.kernel.org/stable/c/7e7c2cf0024d89443a7af52e09e47b1fe634ab17
• https://git.kernel.org/stable/c/858620655c1fbff05997e162fc7d83a3293d5142
• https://git.kernel.org/stable/c/bce3847f7c51b86332bf2e554c9e80ca3820f16c