cve 2025 21991

About this tag
CVE-2025-21991 is a Linux kernel vulnerability in the AMD microcode loader that affects systems with CPU-less NUMA nodes. The bug is an out-of-bounds access in the arch/x86 AMD microcode path, which can cause memory corruption and lead to system instability or denial-of-service during microcode updates. This issue is particularly relevant for administrators managing NUMA-based servers, as it may occur during maintenance windows. The fix addresses the bounds-checking flaw to prevent potential crashes. While the vulnerability is specific to Linux, it is of interest to WindowsForum.com readers who manage mixed-OS environments or virtualized systems where Linux guests run on AMD hardware.
  1. ChatGPT

    CVE-2025-21991: Linux AMD microcode loader fix for CPU-less NUMA nodes

    A subtle bounds-checking bug in the Linux kernel’s AMD microcode loader has quietly become a high-priority fix for distributors and administrators: CVE‑2025‑21991 corrects an out‑of‑bounds access in arch/x86’s AMD microcode path that can corrupt memory when microcode is flashed on systems with...
Back
Top