Linux Kernel PCI VMD Configuration Lock Vulnerability

Vulnerability

A vulnerability in the Linux kernel's PCI Virtual Machine Device (VMD) management has been addressed. The issue arose because the VMD configuration lock was not compatible with certain interrupt handling requirements. Specifically, the original lock type could lead to sleeping in a real-time preemptive context, which is problematic for interrupt management. The vulnerability allowed low-level hardware access to the PCI configuration space with interrupts disabled, potentially leading to unintended behavior or system instability.

Impact

The vulnerability could cause improper handling of PCI configuration accesses, potentially leading to system instability or incorrect hardware behavior.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel PCI VMD Configuration Lock Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating