CVE-2025-38469

{"id": "CVE-2025-38469", "cveTags": [], "metrics": {}, "published": "2025-07-28T12:15:28.640", "references": [{"url": "https://git.kernel.org/stable/c/061c553c66bc1638c280739999224c8000fd4602", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/3ee59c38ae7369ad1f7b846e05633ccf0d159fab", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/5a53249d149f48b558368c5338b9921b76a12f8c", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/fd627ac8a5cff4d45269f164b13ddddc0726f2cc", "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Awaiting Analysis", "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nKVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls\n\nkvm_xen_schedop_poll does a kmalloc_array() when a VM polls the host\nfor more than one event channel potr (nr_ports > 1).\n\nAfter the kmalloc_array(), the error paths need to go through the\n\"out\" label, but the call to kvm_read_guest_virt() does not.\n\n[Adjusted commit message. - Paolo]"}, {"lang": "es", "value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: KVM: x86/xen: Se corrige la l\u00f3gica de limpieza en la emulaci\u00f3n de las hiperllamadas de sondeo schedop de Xen. kvm_xen_schedop_poll ejecuta kmalloc_array() cuando una m\u00e1quina virtual sondea el host en busca de m\u00e1s de un canal de eventos potr (nr_ports > 1). Despu\u00e9s de kmalloc_array(), las rutas de error deben pasar por la etiqueta \"out\", pero la llamada a kvm_read_guest_virt() no. [Mensaje de confirmaci\u00f3n ajustado. - Paolo]"}], "lastModified": "2025-07-29T14:14:29.590", "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}