CVE-2025-40184

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.0-rc7

Description The Linux kernel contains an issue within the KVM component, specifically related to debug checking for non-physical (np) guests utilizing huge mappings on the arm64 architecture. When running with transparent huge pages and CONFIG NVHE EL2 DEBUG enabled, the debug checking in assert host shared guest() can fail during the launch of an np-guest, leading to a kernel panic. The root cause is an incorrect assumption about the size of the mapping being checked. The fix involves updating the checking logic to remove the size check and assume the correct size.

Recommendations Update to a version later than 6.16.0-rc7.