CVE-2025-37885

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been identified, related to KVM (Kernel-based Virtual Machine) on x86 systems. The issue arises when the new GSI route prevents posting the IRQ directly to a vCPU, and the IRTE (Interrupt Remapping Table Entry) is not properly reset to host control. This can lead to interrupts being delivered incorrectly to the guest and potentially result in use-after-free scenarios, especially if the VM is torn down but the underlying host IRQ isn't freed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.