Linux Kernel KVM SVM SEV IOCTL Interface Kernel Data Leak Vulnerability

Vulnerability

A vulnerability in the Linux kernel's KVM SVM module related to SEV ioctl interfaces can lead to a kernel data leak. This issue arises because the length parameter for some SEV ioctl interfaces may be less than or equal to the maximum size allowed, yet still larger than the data returned by the PSP firmware. As a result, the memory allocated by kmalloc reflects the size of the input rather than the actual data received. Since the PSP firmware does not completely overwrite the allocated buffer, these SEV ioctl interfaces can inadvertently return uninitialized memory from the kernel's slab allocator.

Impact

Exploitation of this vulnerability can result in the unintentional disclosure of sensitive kernel memory, potentially leading to further exploitation or privilege escalation.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel KVM SVM SEV IOCTL Interface Kernel Data Leak Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating