| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <f78c7925-8057-4503-93ec-c50386a63862@suse.com> Date: Fri, 28 Feb 2025 08:28:48 +0100 From: Juergen Gross <jgross@...e.com> To: cve@...nel.org, linux-kernel@...r.kernel.org Subject: Re: CVE-2025-21818: x86/xen: fix xen_hypercall_hvm() to not clobber %rbx On 27.02.25 21:03, Greg Kroah-Hartman wrote: > Description > =========== > > In the Linux kernel, the following vulnerability has been resolved: > > x86/xen: fix xen_hypercall_hvm() to not clobber %rbx > > xen_hypercall_hvm(), which is used when running as a Xen PVH guest at > most only once during early boot, is clobbering %rbx. Depending on > whether the caller relies on %rbx to be preserved across the call or > not, this clobbering might result in an early crash of the system. > > This can be avoided by using an already saved register instead of %rbx. > > The Linux kernel CVE team has assigned CVE-2025-21818 to this issue. Please revoke this CVE. There is no way an unprivileged user can trigger this issue at will. The issue is guest local and will either happen very early at boot or it won't happen at all. So no security issue. Juergen Download attachment "OpenPGP_0xB0DE9DD628BF132F.asc" of type "application/pgp-keys" (3684 bytes) Download attachment "OpenPGP_signature.asc" of type "application/pgp-signature" (496 bytes)
Powered by blists - more mailing lists