CVE-2023-54081
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
xen: speed up grant-table reclaim
When a grant entry is still in use by the remote domain, Linux must put it on a deferred list. Normally, this list is very short, because the PV network and block protocols expect the backend to unmap the grant first. However, Qubes OS's GUI protocol is subject to the constraints of the X Window System, and as such winds up with the frontend unmapping the window first. As a result, the list can grow very large, resulting in a massive memory leak and eventual VM freeze.
To partially solve this problem, make the number of entries that the VM will attempt to free at each iteration tunable. The default is still 10, but it can be overridden via a module parameter.
This is Cc: stable because (when combined with appropriate userspace changes) it fixes a severe performance and stability problem for Qubes OS users.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 569ca5b3f94cd0b3295ec5943aa457cf4a4f6a3a < cd1a8952ff529adc210e62306849fd6f256608c0 | affected |
| Linux | Linux | 569ca5b3f94cd0b3295ec5943aa457cf4a4f6a3a < c76d96c555895ac602c1587b001e5cf656abc371 | affected |
| Linux | Linux | 569ca5b3f94cd0b3295ec5943aa457cf4a4f6a3a < c04e9894846c663f3278a414f34416e6e45bbe68 | affected |
| Linux | Linux | 3.5 | affected |
| Linux | Linux | 0 < 3.5 | unaffected |
| Linux | Linux | 6.1.43 <= 6.1.* | unaffected |
| Linux | Linux | 6.4.8 <= 6.4.* | unaffected |
| Linux | Linux | 6.5 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/cd1a8952ff529adc210e62306849fd6f256608c0
- https://git.kernel.org/stable/c/c76d96c555895ac602c1587b001e5cf656abc371
- https://git.kernel.org/stable/c/c04e9894846c663f3278a414f34416e6e45bbe68
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.