CVE-2025-68259 is a Linux kernel vulnerability in the KVM SVM backend that affects AMD-based virtualized environments. The bug involves mis-handling of software interrupt re-injection, specifically INT3/INTO and select INTn instructions, when the guest code stream is modified between execution and KVM's decode step. This can lead to erroneous instruction decoding, an incorrect next RIP, and deterministic guest panics or host instability. The issue is relevant for administrators and developers managing KVM on AMD/SVM hosts, particularly those running untrusted or dynamic guest code. Understanding this CVE is important for applying appropriate kernel patches and ensuring virtual machine stability.
-
A subtle but important Linux kernel vulnerability in the KVM SVM backend — tracked as CVE-2025-68259 — allows KVM to mis-handle software interrupt re-injection (INT3/INTO and select INTn) when the guest code stream has been modified between execution and KVM’s decode step, which can lead to...