CVE-2025-68259

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the KVM SVM component. Specifically, when re-injecting a soft interrupt from an INT3 instruction, the system may discard the exception and retry the instruction if the code stream changes between the CPU executing the instruction and KVM decoding it. This can lead to incorrect decoding and potentially clobber guest state. The issue often manifests as "Oops: int3" panics in Linux guests when using the kernel's "text poke" code patching mechanism. The bug can be triggered by repeatedly checking a static branch while swapping out the guest's TSS memory on the host.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Time Of Check To Time Of Use

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-367

Related Identifiers

AZL-72497

BDU:2026-07524

CVE-2025-68259

ECHO-7200-7B51-A48A

OESA-2026-1759

OESA-2026-1760

OESA-2026-1761

OPENSUSE-SU-2025:15836-1

OPENSUSE-SU-2026:10301-1

OPENSUSE-SU-2026:20145-1

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:20207-1

SUSE-SU-2026:20220-1

SUSE-SU-2026:20228-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

USN-8094-1

USN-8094-2

USN-8094-3

USN-8094-4

USN-8094-5

USN-8152-1

USN-8179-1

USN-8179-2

USN-8179-3

USN-8179-4

USN-8184-1

USN-8185-1

USN-8185-2

USN-8203-1

USN-8204-1

USN-8258-1

USN-8260-1

USN-8261-1

USN-8265-1

Affected Products

Debian

Linuxmint

Linux Kernel

Ubuntu

CVE-2025-68259

Weakness Enumeration

Related Identifiers

Affected Products

References · 2531