CVE-2025-38046

xen: Add support for XenServer 6.1 platform device

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: xen: Add support for XenServer 6.1 platform device On XenServer on Windows machine a platform device with ID 2 instead of
1 is used. This device is mainly identical to device 1 but due to some Windows
update behaviour it was decided to use a device with a different ID. This causes compatibility issues with Linux which expects, if Xen
is detected, to find a Xen platform device (5853:0001) otherwise code
will crash due to some missing initialization (specifically grant
tables). Specifically from dmesg RIP: 0010:gnttab_expand+0x29/0x210 Code: 90 0f 1f 44 00 00 55 31 d2 48 89 e5 41 57 41 56 41 55 41 89 fd 41 54 53 48 83 ec 10 48 8b 05 7e 9a 49 02 44 8b 35 a7 9a 49 02 <8b> 48 04 8d 44 39 ff f7 f1 45 8d 24 06 89 c3 e8 43 fe ff ff 44 39 RSP: 0000:ffffba34c01fbc88 EFLAGS: 00010086 ... The device 2 is presented by Xapi adding device specification to
Qemu command line.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-04-16 CVE Reserved
2025-06-18 CVE Published
2025-06-18 CVE Updated
---------- EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (8)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/baedd1ef924d2b04d6223e0e1633e2d84fee6763	2025-06-04
https://git.kernel.org/stable/c/5239ba49ad23a2285b4c2d15bec71566d32e0300	2025-06-04
https://git.kernel.org/stable/c/7258b92ceff342912945eaaf8787ca3b83dbae21	2025-06-04
https://git.kernel.org/stable/c/02d850de9495699f2029886a6a69f0ed07a39b84	2025-06-04
https://git.kernel.org/stable/c/0fb6c439d265f09785a561fd2c637af567641cab	2025-06-04
https://git.kernel.org/stable/c/f5363ffdabc2a281bd0023584944e3d0c25dfcd3	2025-05-29
https://git.kernel.org/stable/c/55c3a07c0d96f5328e8fd5ffbf1448b60683f6fd	2025-05-29
https://git.kernel.org/stable/c/2356f15caefc0cc63d9cc5122641754f76ef9b25	2025-03-14

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.4.294 Search vendor "Linux" for product "Linux Kernel" and version " < 5.4.294"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.10.238 Search vendor "Linux" for product "Linux Kernel" and version " < 5.10.238"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 5.15.185 Search vendor "Linux" for product "Linux Kernel" and version " < 5.15.185"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.1.141 Search vendor "Linux" for product "Linux Kernel" and version " < 6.1.141"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.6.93 Search vendor "Linux" for product "Linux Kernel" and version " < 6.6.93"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.12.31 Search vendor "Linux" for product "Linux Kernel" and version " < 6.12.31"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.14.9 Search vendor "Linux" for product "Linux Kernel" and version " < 6.14.9"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				< 6.15 Search vendor "Linux" for product "Linux Kernel" and version " < 6.15"		en		Affected