CVE-2026-23553 – x86: incomplete IBPB for vCPU isolation

CVE ID : CVE-2026-23553

Published : Jan. 28, 2026, 4:16 p.m. | 51 minutes ago

Description : In the context switch logic Xen attempts to skip an IBPB in the case of
a vCPU returning to a CPU on which it was the previous vCPU to run.
While safe for Xen’s isolation between vCPUs, this prevents the guest
kernel correctly isolating between tasks. Consider:

1) vCPU runs on CPU A, running task 1.
2) vCPU moves to CPU B, idle gets scheduled on A. Xen skips IBPB.
3) On CPU B, guest kernel switches from task 1 to 2, issuing IBPB.
4) vCPU moves back to CPU A. Xen skips IBPB again.

Now, task 2 is running on CPU A with task 1’s training still in the BTB.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2026-23553 – x86: incomplete IBPB for vCPU isolation

تکمیل ظرفیت سرور لهستان

سرور مناسب برای ترید و ارز دیجیتال

دیتاسنتر جدید در لهستان

سرور های جدید از اسپانیا

AMD EPYC & Ryzen از کشور انگلستان

آفر های جدید AMD EPYC و AMD Ryzen

آفر سرور اختصاصی از آمریکا

افزایش قیمت دامنه های ir از ۳۱ خرداد

افزایش قیمت جهانی دامنه .com

آفر های جدید سرور اختصاصی مرداد 1403

CVE-2025-57796 – Use of a hardcoded static key to protect sensitive data in Explorance Blue

سرور های جدید از روسیه-وارز

تخفیف ویژه دامنه .ASIA

ثبت دامنه .IO

انتقال رایگان پسوند دامنه PW

Kerio Control 9.2.4 Build 2223

نوشته های مشابه

CVE-2025-68659 – Discourse has DoS vulnerability in username change endpoint

CVE-2025-68479 – Discourse subscriptions are susceptible to takeover

CVE-2025-67723 – Discourse vulnerable to stored Cross-site Scripting via Katex in discourse-math plugin

CVE-2025-71000 – OneFlow Flow.cuda.BoolTensor Denial of Service