CVE-2026-46082

Source
https://cve.org/CVERecord?id=CVE-2026-46082
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46082.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-46082
Downstream
Related
Published
2026-05-27T12:58:21.629Z
Modified
2026-06-26T11:56:03.981619050Z
Summary
KVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0
Details

In the Linux kernel, the following vulnerability has been resolved:

KVM: SVM: Inject #UD for INVLPGA if EFER.SVME=0

INVLPGA should cause a #UD when EFER.SVME is not set. Add a check to properly inject #UD when EFER.SVME=0.

[sean: tag for stable@]

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/46xxx/CVE-2026-46082.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ff092385e8285c03d8b148f42f46f98c5f4becd5
Fixed
ebb63390142c6458fc37758e0892759989cc159f
Fixed
491139c17f8ad5773303068411f6ac5eed438b51
Fixed
3ac9d4241d205f5d0df06358349ca718ebb0fa12
Fixed
643125b66ffc1147c66616b749475ba9efb15971
Fixed
c15392ed9e49c1a16b4d3a3ccf1b3bf2318a6c28
Fixed
ee24928ecd85db4b68ed111e91fef36af0ca37b0
Fixed
d99df02ff427f461102230f9c5b90a6c64ee8e23

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46082.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
2.6.32
Fixed
5.15.209
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.175
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.140
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.12.86
Type
ECOSYSTEM
Events
Introduced
6.13.0
Fixed
6.18.27
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
7.0.4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-46082.json"