CVE-2026-31568

Source
https://cve.org/CVERecord?id=CVE-2026-31568
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-31568.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-31568
Downstream
Related
Published
2026-04-24T14:35:48.125Z
Modified
2026-07-15T01:49:15.015577750Z
Summary
s390/mm: Add missing secure storage access fixups for donated memory
Details

In the Linux kernel, the following vulnerability has been resolved:

s390/mm: Add missing secure storage access fixups for donated memory

There are special cases where secure storage access exceptions happen in a kernel context for pages that don't have the PGarch1 bit set. That bit is set for non-exported guest secure storage (memory) but is absent on storage donated to the Ultravisor since the kernel isn't allowed to export donated pages.

Prior to this patch we would try to export the page by calling archmakefolio_accessible() which would instantly return since the arch bit is absent signifying that the page was already exported and no further action is necessary. This leads to secure storage access exception loops which can never be resolved.

With this patch we unconditionally try to export and if that fails we fixup.

Database specific
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/31xxx/CVE-2026-31568.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
084ea4d611a3d00ee3930400b262240e10895900
Fixed
b36b0e804aee5f20c6798dbeaeaa7cfdb7c6cf88
Fixed
43ac2d18db1131df0a89993f709131ebfc29f3bd
Fixed
b00be77302d7ec4ad0367bb236494fce7172b730

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-31568.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.7.0
Fixed
6.18.21
Type
ECOSYSTEM
Events
Introduced
6.19.0
Fixed
6.19.11

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-31568.json"