CVE-2025-1713

High CVSS: 7.5

When setting up interrupt remapping for legacy PCI(-X) devices,
including PCI(-X) bridges, a lookup of the upstream bridge is required.
This lookup, itself involving acquiring of a lock, is done in a context
where acquiring that lock is unsafe. This can lead to a deadlock.

Vendor

Xen

Product

Xen

CWE

CWE-833

Yayın Tarihi

2025-07-17 14:15:30

Güncelleme

2026-01-13 22:16:10

Source Identifier

security@xen.org

KEV Date Added

Kategoriler

CWE-833 Xen HIGH Xen 2025

Referanslar

https://xenbits.xenproject.org/xsa/advisory-467.html http://www.openwall.com/lists/oss-security/2025/02/27/1 http://www.openwall.com/lists/oss-security/2025/02/27/3 http://www.openwall.com/lists/oss-security/2025/02/28/1 http://xenbits.xen.org/xsa/advisory-467.html

Benzer Kayıtlar

Low

CVE-2026-23553

In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU on which it was the pr…

High

CVE-2025-58150

Shadow mode tracing code uses a set of per-CPU variables to avoid cumbersome parameter passing. Some of these variables…

High

CVE-2025-58148

[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to whi…

High

CVE-2025-58149

When passing through PCI devices, the detach logic in libxl won't remove access permissions to any 64bit memory BARs the…

High

CVE-2025-58147

[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to whi…

Critical

CVE-2025-58142

[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to whi…