CVE-2025-37957

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version

Description A vulnerability in the Linux kernel has been resolved, related to KVM (Kernel-based Virtual Machine) and SVM (Secure Virtual Machine). The issue occurs when a triple fault happens in System Management Mode (SMM), leading to a use-after-free scenario. This situation can trigger a WARN when KVM forces a vCPU INIT after SHUTDOWN interception while the vCPU is in SMM. The issue was reproduced using Syzkaller by creating a KVM VM and vCPU, sending a KVM SMI ioctl to enter SMM, and executing invalid instructions causing consecutive exceptions and a triple fault.

Recommendations For Linux kernel versions prior to the fixed version, consider updating to a newer version that includes the fix for this issue. As a temporary workaround, consider disabling the kvm vcpu reset() function until a patch is available. Restrict access to the vulnerable svm invoke exit handler() function to minimize the risk of exploitation. Avoid using the KVM SMI ioctl in the affected API endpoint until the issue is resolved.