CVE-2020-25604 — Race Condition in XEN

CWE-362 — Race Condition9 documents8 sources

Severity

4.7MEDIUMNVD

EPSS

0.1%

top 78.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian Linux Fedoraproject Fedora +1 more

Timeline

PublishedSep 23

Latest updateSep 19

Description

An issue was discovered in Xen through 4.14.x. There is a race condition when migrating timers between x86 HVM vCPUs. When migrating timers of x86 HVM guests between its vCPUs, the locking model used allows for a second vCPU of the same guest (also operating on the timers) to release a lock that it didn't acquire. The most likely effect of the issue is a hang or crash of the hypervisor, i.e., a Denial of Service (DoS). All versions of Xen are affected. Only x86 systems are vulnerable. Arm system…

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.0 | Impact: 3.6

Affected Packages3 packages

▶Debianxen/xen< 4.14.0+80-gd101b417b7-1+3

▶NVDxen/xen4.14.0

▶NVDopensuse/leap15.2

Also affects: Debian Linux 10.0, Fedora 31, 32, 33

Patches

Patch: xenbits.xen.org ↗Patch: xenbits.xen.org ↗

🔴Vulnerability Details

GHSA

GHSA-77g8-pq4g-f4jv: An issue was discovered in Xen through 4↗2022-05-24

▶

CVEList

CVE-2020-25604: An issue was discovered in Xen through 4↗2020-09-23

▶

OSV

CVE-2020-25604: An issue was discovered in Xen through 4↗2020-09-23

▶

📋Vendor Advisories

Ubuntu

Xen vulnerabilities↗2022-09-19

▶

Red Hat

xen: race when migrating timers between x86 HVM vCPU-s (XSA-336)↗2020-09-22

▶

Debian

CVE-2020-25604: xen - An issue was discovered in Xen through 4.14.x. There is a race condition when mi...↗2020

▶

💬Community

Bugzilla

CVE-2020-25604 xen: race when migrating timers between x86 HVM vCPU-s (XSA-336) [fedora-all]↗2020-09-22

▶

Bugzilla

CVE-2020-25604 xen: race when migrating timers between x86 HVM vCPU-s (XSA-336)↗2020-09-09

▶