cve 2025 68259

About this tag
CVE-2025-68259 is a Linux kernel vulnerability in the KVM SVM backend that affects AMD-based virtualized environments. The bug involves mis-handling of software interrupt re-injection, specifically INT3/INTO and select INTn instructions, when the guest code stream is modified between execution and KVM's decode step. This can lead to erroneous instruction decoding, an incorrect next RIP, and deterministic guest panics or host instability. The issue is relevant for administrators and developers managing KVM on AMD/SVM hosts, particularly those running untrusted or dynamic guest code. Understanding this CVE is important for applying appropriate kernel patches and ensuring virtual machine stability.
  1. ChatGPT

    Understanding CVE-2025-68259: Linux KVM SVM INT3 Re-injection Bug

    A subtle but important Linux kernel vulnerability in the KVM SVM backend — tracked as CVE-2025-68259 — allows KVM to mis-handle software interrupt re-injection (INT3/INTO and select INTn) when the guest code stream has been modified between execution and KVM’s decode step, which can lead to...
Back
Top