Re: CVE-2025-21818: x86/xen: fix xen_hypercall_hvm() to not clobber %rbx

From: Greg KH
Date: Sun Mar 02 2025 - 09:27:09 EST

Next message: Cindy Lu: "[PATCH v7 1/8] vhost: Add a new parameter in vhost_dev to allow user select kthread"
Previous message: Alexander Usyskin: "[PATCH v6 11/11] drm/xe/nvm: add support for access mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, Feb 28, 2025 at 08:28:48AM +0100, Juergen Gross wrote:
> On 27.02.25 21:03, Greg Kroah-Hartman wrote:
> > Description
> > ===========
> >
> > In the Linux kernel, the following vulnerability has been resolved:
> >
> > x86/xen: fix xen_hypercall_hvm() to not clobber %rbx
> >
> > xen_hypercall_hvm(), which is used when running as a Xen PVH guest at
> > most only once during early boot, is clobbering %rbx. Depending on
> > whether the caller relies on %rbx to be preserved across the call or
> > not, this clobbering might result in an early crash of the system.
> >
> > This can be avoided by using an already saved register instead of %rbx.
> >
> > The Linux kernel CVE team has assigned CVE-2025-21818 to this issue.
>
> Please revoke this CVE.
>
> There is no way an unprivileged user can trigger this issue at will.
> The issue is guest local and will either happen very early at boot or
> it won't happen at all.
>
> So no security issue.

Now rejected, thanks for the review.

greg k-h

Next message: Cindy Lu: "[PATCH v7 1/8] vhost: Add a new parameter in vhost_dev to allow user select kthread"
Previous message: Alexander Usyskin: "[PATCH v6 11/11] drm/xe/nvm: add support for access mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]