Linux Kernel x86/AMD Northbridge Vulnerability in MMCFG Handling

Vulnerability

A vulnerability has been addressed in the Linux kernel related to the x86/AMD northbridge management. The issue arose because Xen hypervisor does not provide the MSR_FAM10H_MMIO_CONF_BASE model-specific register to all guest virtual machines. This omission led to a warning about unchecked access to the register, indicating a potential issue with how memory-mapped configuration ranges were being handled for certain devices. The vulnerability was likely exposed by recent changes that modified how Xen manages MSR accesses, potentially allowing for improper handling of device configuration areas.

Impact

The vulnerability could lead to incorrect management of memory-mapped configuration ranges, potentially causing issues with device handling or performance.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

5.3

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel x86/AMD Northbridge Vulnerability in MMCFG Handling

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating