CNNVD-202507-2298 Information
CNNVD ID
CNNVD-202507-2298
Related CVE
- CNNVD Published: 2025-07-17
Description (Chinese)
Xen是Xen开源的一款开源的虚拟机监视器产品。该产品能够使不同和不兼容的操作系统运行在同一台计算机上,并支持在运行时进行迁移,保证正常运行并且避免宕机。 Xen存在安全漏洞,该漏洞源于在设置中断重映射时获取锁的操作不安全,可能导致死锁。
Description (English)
Xen is an open-source virtual machine monitor product. The product enables different and incompatible operating systems to operate on the same computer and supports migration during operation to ensure proper operation and avoid loss of power. Xen had a security loophole, which stemmed from the unsafe operation of obtaining locks when setting off the map, which could lead to death.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
xdg
Published
2025-07-17
Last Modified
2026-02-24
References
http://www.openwall.com/lists/oss-security/2025/02/27/1 http://www.openwall.com/lists/oss-security/2025/02/27/3 http://www.openwall.com/lists/oss-security/2025/02/28/1 http://xenbits.xen.org/xsa/advisory-467.html https://xenbits.xenproject.org/xsa/advisory-467.html
Patch
https://xenproject.org/resources/downloads/
Share on: