CVE-2025-21740

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A bug in the Linux kernel has been identified, related to the KVM x86/mmu module. The issue occurs when waking a VM's NX huge page recovery thread, where the thread's existence is not verified before attempting to wake it. This can lead to a kernel NULL pointer dereference. The error is associated with a supervisor read access in kernel mode and a not-present page error. The problem is triggered by a specific sequence of events involving the vhost task wake function and the set nx huge pages function within the KVM module.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.