PT-2025-44106 · Linux+2 · Linux Kernel+2

Published

2025-08-19

·

Updated

2026-05-07

·

CVE-2025-40038

CVSS v2.0

6.0

Medium

VectorAV:L/AC:H/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.0-smp--e6c618b51cfe-sleep #782
Description The Linux kernel contained an issue in the KVM component related to SVM fastpath emulation. Specifically, the fastpath emulation was not being skipped on VM-Exit if the next RIP was invalid, potentially leading to a sleeping function being called from an invalid context. This could occur when KVM is running with nrips=false, requiring the reading of guest memory through the emulator, which can result in faults. The issue was triggered by an invalid context during the execution of the vcpu run function within the KVM module.
Recommendations Update the Linux kernel to version 6.16.0-smp--e6c618b51cfe-sleep #782 or a later version to resolve this issue.

Exploit

Fix

Improper Check for Exceptional Conditions

Weakness Enumeration

CWE-754

Related Identifiers

BDU:2026-02715
CVE-2025-40038
MGASA-2025-0309
MGASA-2025-0310
OPENSUSE-SU-2025:15702-1
OPENSUSE-SU-2025:20172-1
OPENSUSE-SU-2026:10301-1
SUSE-SU-2025:4393-1
SUSE-SU-2025:4422-1
SUSE-SU-2025:4505-1
SUSE-SU-2025:4516-1
SUSE-SU-2025:4517-1
SUSE-SU-2025:4521-1
SUSE-SU-2026:20012-1
SUSE-SU-2026:20015-1
SUSE-SU-2026:20021-1
SUSE-SU-2026:20039-1
SUSE-SU-2026:20059-1
SUSE-SU-2026:20473-1
SUSE-SU-2026:20496-1
USN-8029-1
USN-8029-2
USN-8029-3
USN-8030-1
USN-8048-1
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8100-1
USN-8125-1
USN-8126-1
USN-8165-1
USN-8261-1

Affected Products

Linuxmint
Linux Kernel
Ubuntu