Описание
[REJECTED CVE] A vulnerability was identified in the Linux kernel’s Xen subsystem, where the is_xen_pmu() function failed to disable preemption while accessing a per-CPU pointer, risking undefined behavior during CPU context switches—especially during resume from suspend. Although the function takes a CPU ID parameter, it incorrectly relies on smp_processor_id(), triggering kernel warnings. An attacker could potentially exploit this through crafted suspend/resume sequences to induce instability or kernel crashes
Отчет
This CVE has been rejected upstream: https://lore.kernel.org/linux-cve-announce/2025022604-REJECTED-0c7f@gregkh/
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 10 | kernel | Not affected | ||
| Red Hat Enterprise Linux 6 | kernel | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel-rt | Not affected | ||
| Red Hat Enterprise Linux 8 | kernel | Not affected | ||
| Red Hat Enterprise Linux 8 | kernel-rt | Not affected | ||
| Red Hat Enterprise Linux 9 | kernel | Not affected | ||
| Red Hat Enterprise Linux 9 | kernel-rt | Not affected |
Показывать по
Дополнительная информация
Статус:
5.5 Medium
CVSS3
Связанные уязвимости
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
5.5 Medium
CVSS3