A high-severity KVM x86 shadow paging flaw can result in a use-after-free condition due to stale reverse-map entries.

The KVM shadow MMU incorrectly computes Guest Frame Numbers (GFNs) for direct shadow pages, leaving stale reverse-map entries after an unexpected GFN appears, leading to a use-after-free.

This vulnerability could be exploited to compromise the stability of virtualized environments, potentially leading to guest-to-host escapes or system crashes. With a CVSS score of 8.8, this is a critical concern for virtualization infrastructure.

Immediate Action: Update the Linux kernel to the corrected versions (6.6.140, 6.12.88, 6.18.30, 7.0.7, or 7.1-rc) immediately.

Proactive Monitoring: Monitor virtualized host logs for unexpected KVM errors or memory-related crashes.

Compensating Controls: Restrict access to KVM configuration interfaces and ensure guest isolation policies are strictly enforced.

Public Exploit Available: false

Organizations running Linux-based virtualization hosts must prioritize these kernel updates. Ensuring the stability and security of the KVM hypervisor is essential for preventing host-level compromises.