What the vulnerability does

01Description

A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a non-root (host) user-level application to crash the host kernel by creating a confidential guest VM instance in AMD CPU that supports Secure Encrypted Virtualization (SEV).

Key dates

02Disclosure timeline

August 26, 2022 CVE published
August 2, 2024 Record updated