Описание
[REJECTED CVE] A vulnerability was identified in the Linux kernel’s Xen ARM implementation, where a race condition in RB-tree-based P2M (physical-to-machine) accounting could occur due to an unprotected read of the tree root in __set_phys_to_machine_multi(). An attacker could theoretically exploit this by triggering concurrent grant table operations (via gnttab_map_refs() and gnttab_unmap_refs()) that lead to incorrect or inconsistent memory mappings, potentially causing memory corruption or denial of service. However, due to the extremely rare occurrence and limited impact in real-world use
Отчет
This CVE has been rejected upstream: https://lore.kernel.org/linux-cve-announce/2025022622-REJECTED-3830@gregkh/
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 10 | kernel | Not affected | ||
| Red Hat Enterprise Linux 6 | kernel | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel | Not affected | ||
| Red Hat Enterprise Linux 7 | kernel-rt | Not affected | ||
| Red Hat Enterprise Linux 8 | kernel | Out of support scope | ||
| Red Hat Enterprise Linux 8 | kernel-rt | Out of support scope | ||
| Red Hat Enterprise Linux 9 | kernel | Will not fix | ||
| Red Hat Enterprise Linux 9 | kernel-rt | Will not fix |
Показывать по
Дополнительная информация
Статус:
5.5 Medium
CVSS3
Связанные уязвимости
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
5.5 Medium
CVSS3