CVE-2025-39823 | Linux Kernel up to 6.17-rc3 KVM array_index_nospec memory corruption

September 16, 2025 Yanac

A vulnerability classified as critical was found in Linux Kernel up to 6.17-rc3. This affects the function array_index_nospec of the component KVM. Executing manipulation can lead to memory corruption.

This vulnerability is handled as CVE-2025-39823. The attack can only be done within the local network. There is not any exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More