CVE-2023-54081

EPSS 0.02%
Veröffentlicht 24.12.2025 13:06:13
Zuletzt bearbeitet 29.12.2025 15:58:34
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

xen: speed up grant-table reclaim

When a grant entry is still in use by the remote domain, Linux must put
it on a deferred list.  Normally, this list is very short, because
the PV network and block protocols expect the backend to unmap the grant
first.  However, Qubes OS's GUI protocol is subject to the constraints
of the X Window System, and as such winds up with the frontend unmapping
the window first.  As a result, the list can grow very large, resulting
in a massive memory leak and eventual VM freeze.

To partially solve this problem, make the number of entries that the VM
will attempt to free at each iteration tunable.  The default is still
10, but it can be overridden via a module parameter.

This is Cc: stable because (when combined with appropriate userspace
changes) it fixes a severe performance and stability problem for Qubes
OS users.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 6

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < cd1a8952ff529adc210e62306849fd6f256608c0

Version 569ca5b3f94cd0b3295ec5943aa457cf4a4f6a3a

Status affected

Version < c76d96c555895ac602c1587b001e5cf656abc371

Version 569ca5b3f94cd0b3295ec5943aa457cf4a4f6a3a

Status affected

Version < c04e9894846c663f3278a414f34416e6e45bbe68

Version 569ca5b3f94cd0b3295ec5943aa457cf4a4f6a3a

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 3.5

Status affected

Version < 3.5

Version 0

Status unaffected

Version <= 6.1.*

Version 6.1.43

Status unaffected

Version <= 6.4.*

Version 6.4.8

Status unaffected

Version <= *

Version 6.5

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.058

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/cd1a8952ff529adc210e62306849fd6f256608c0

https://git.kernel.org/stable/c/c76d96c555895ac602c1587b001e5cf656abc371

https://git.kernel.org/stable/c/c04e9894846c663f3278a414f34416e6e45bbe68

https://nvd.nist.gov/vuln/detail/CVE-2023-54081

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54081

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54081

EUVD