CVE-2023-54081

EPSS 0.03%
Veröffentlicht 24.12.2025 13:06:13
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

xen: speed up grant-table reclaim

In the Linux kernel, the following vulnerability has been resolved:

xen: speed up grant-table reclaim

When a grant entry is still in use by the remote domain, Linux must put
it on a deferred list.  Normally, this list is very short, because
the PV network and block protocols expect the backend to unmap the grant
first.  However, Qubes OS's GUI protocol is subject to the constraints
of the X Window System, and as such winds up with the frontend unmapping
the window first.  As a result, the list can grow very large, resulting
in a massive memory leak and eventual VM freeze.

To partially solve this problem, make the number of entries that the VM
will attempt to free at each iteration tunable.  The default is still
10, but it can be overridden via a module parameter.

This is Cc: stable because (when combined with appropriate userspace
changes) it fixes a severe performance and stability problem for Qubes
OS users.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 6

CNA 2 VulnDex Vulnerability Enrichment 11

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 569ca5b3f94cd0b3295ec5943aa457cf4a4f6a3a

Version < cd1a8952ff529adc210e62306849fd6f256608c0

Status affected

Version 569ca5b3f94cd0b3295ec5943aa457cf4a4f6a3a

Version < c76d96c555895ac602c1587b001e5cf656abc371

Status affected

Version 569ca5b3f94cd0b3295ec5943aa457cf4a4f6a3a

Version < c04e9894846c663f3278a414f34416e6e45bbe68

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 3.5

Status affected

Version 0

Version < 3.5

Status unaffected

Version <= 6.1.*

Version 6.1.43

Status unaffected

Version <= 6.4.*

Version 6.4.8

Status unaffected

Version <= *

Version 6.5

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.092

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/cd1a8952ff529adc210e62306849fd6f256608c0

https://git.kernel.org/stable/c/c76d96c555895ac602c1587b001e5cf656abc371

https://git.kernel.org/stable/c/c04e9894846c663f3278a414f34416e6e45bbe68

https://nvd.nist.gov/vuln/detail/CVE-2023-54081

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54081

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54081

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-54081