Linux Kernel VIRQ Binding Vulnerability in Xen Event Handling

A vulnerability in the Linux kernel's handling of Virtual Interrupt Requests (VIRQs) within the Xen event system has been addressed. The issue arose because the function 'find_virq()' did not properly account for VIRQs bound to CPUs other than the one specified, particularly for per-domain or global VIRQs that must initially be bound to CPU0. This could lead to errors when these interrupts migrated off CPU0. The vulnerability has been resolved by modifying 'find_virq()' to return an error code when a VIRQ is incorrectly bound, thereby preventing potential mishandling of interrupts. The fix also involved removing a previous error trigger that could cause system instability.

Impact

The vulnerability could lead to improper handling of interrupts, potentially causing system instability or incorrect event processing in virtualized environments using Xen.

Remediation

Users can apply the latest patches available in the Linux kernel stable tree to address this vulnerability.