CVE-2025-21977

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A hang issue in the kdump kernel has been resolved when running on Hyper-V Gen 2 VMs. The problem occurs when the hyperv fb driver moves the framebuffer to a different MMIO address due to conflicts with an already-running efifb or simplefb driver. This causes the kdump kernel to access a non-existent framebuffer address, leading to a hang. The issue was originally reported in 2020 and resolved, but a later commit reintroduced the problem. The fix involves reordering the steps in hyperv fb to remove conflicting framebuffers before allocating an MMIO address.

Recommendations To resolve the issue, update the Linux kernel to a version that includes the fix. As a temporary workaround, consider disabling the hyperv fb driver until a patch is available. Restrict access to the kdump kernel to minimize the risk of exploitation. Avoid using the kexec file load() system call to load the kdump kernel into crash memory, as this can cause the problem to occur. Instead, use the kexec load() system call, which builds the screen info table itself in user space from data returned by the FBIOGET FSCREENINFO ioctl against /dev/fb0.