{"uuid": "cc1445ee-1885-4bd0-a0a1-cd01abfc8283", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-37885", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15688", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-37885\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: x86: Reset IRTE to host control if *new* route isn't postable\n\nRestore an IRTE back to host control (remapped or posted MSI mode) if the\n*new* GSI route prevents posting the IRQ directly to a vCPU, regardless of\nthe GSI routing type.  Updating the IRTE if and only if the new GSI is an\nMSI results in KVM leaving an IRTE posting to a vCPU.\n\nThe dangling IRTE can result in interrupts being incorrectly delivered to\nthe guest, and in the worst case scenario can result in use-after-free,\ne.g. if the VM is torn down, but the underlying host IRQ isn't freed.\n\ud83d\udccf Published: 2025-05-09T06:45:48.150Z\n\ud83d\udccf Modified: 2025-05-09T06:45:48.150Z\n\ud83d\udd17 References:\n1. https://git.kernel.org/stable/c/e5f2dee9f7fcd2ff4b97869f3c66a0d89c167769\n2. https://git.kernel.org/stable/c/116c7d35b8f72eac383b9fd371d7c1a8ffc2968b\n3. https://git.kernel.org/stable/c/023816bd5fa46fab94d1e7917fe131b79ed1fb41\n4. https://git.kernel.org/stable/c/3481fd96d801715942b6f69fe251133128156f30\n5. https://git.kernel.org/stable/c/b5de7ac74f69603ad803c524b840bffd36368fc3\n6. https://git.kernel.org/stable/c/3066ec21d1a33896125747f68638725f456308db\n7. https://git.kernel.org/stable/c/9bcac97dc42d2f4da8229d18feb0fe2b1ce523a2", "creation_timestamp": "2025-05-09T07:25:29.000000Z"}