Linux Kernel Grant-Table Reclaim Performance Improvement Vulnerability in Qubes OS
Vulnerability
A vulnerability in the Linux kernel's handling of grant-table entries can lead to a significant memory leak and eventual freeze of virtual machines running Qubes OS. This issue arises because the GUI protocol in Qubes OS, which is constrained by the X Window System, causes the frontend to unmap windows before the backend has finished processing grant entries. As a result, deferred lists can become excessively long, consuming large amounts of memory. The vulnerability has been addressed by making the number of grant entries that can be freed in each iteration adjustable, allowing for better management of deferred entries and improving performance and stability for Qubes OS users.
Impact
Exploitation of this vulnerability can cause a severe memory leak, leading to a freeze of the affected virtual machine.
Remediation
Users can adjust the number of grant entries to free per iteration by modifying the 'free_per_iteration' module parameter. The default value is 10, but it can be increased to improve grant-table reclaim efficiency.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.