Memory Mapping Issue in Linux Kernel for KVM with Legacy PCI Devices
CVE-2025-40181
What is CVE-2025-40181?
A vulnerability present in the Linux Kernel affects the handling of memory mappings for legacy PCI devices when operating as a Secure Nested Paging (SNP) or Trusted Domain eXtension (TDX) guest under Kernel-based Virtual Machine (KVM). The issue arises when the kernel's Advanced Configuration and Power Interface (ACPI) driver maps SystemMemory regions with the wrong memory type, potentially causing device drivers, such as those for High Precision Event Timer (HPET) and Trusted Platform Module (TPM), to fail initialization due to incompatible cache settings. This inconsistency leads to issues when the requested memory type from the drivers doesn't match the type established by the ACPI mappings, ultimately resulting in operation failures.
Affected Version(s)
Linux 8e690b817e38769dc2fa0e7473e5a5dc1fc25795 < 34ff466f74d0fe1db8956f9c245e2bb2c67f67bf
Linux 8e690b817e38769dc2fa0e7473e5a5dc1fc25795 < 91ab8a21bda2d2d2842b6159ac060d9100433a3c
Linux 8e690b817e38769dc2fa0e7473e5a5dc1fc25795 < 0dccbc75e18df85399a71933d60b97494110f559