CVE-2025-38469

In the Linux kernel, the following vulnerability has been resolved: KVM: x86/xen: Fix cleanup logic in emulation of Xen schedop poll hypercalls kvm_xen_schedop_poll does a kmalloc_array() when a VM polls the host for more than one event channel potr (nr_ports > 1). After the kmalloc_array(), the error paths need to go through the "out" label, but the call to kvm_read_guest_virt() does not. [Adjusted commit message. - Paolo]

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/061c553c66bc1638c280739999224c8000fd4602	Patch
https://git.kernel.org/stable/c/3ee59c38ae7369ad1f7b846e05633ccf0d159fab	Patch
https://git.kernel.org/stable/c/5a53249d149f48b558368c5338b9921b76a12f8c	Patch
https://git.kernel.org/stable/c/fd627ac8a5cff4d45269f164b13ddddc0726f2cc	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.2:-::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc5::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc6::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc7::::::
	cpe:2.3:o:linux:linux_kernel:6.2:rc8::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc5::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc6::::::
	cpe:2.3:o:linux:linux_kernel:6.16:rc7::::::

History

19 Nov 2025, 17:58

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 5.5
References	~~() https://git.kernel.org/stable/c/061c553c66bc1638c280739999224c8000fd4602 -~~	() https://git.kernel.org/stable/c/061c553c66bc1638c280739999224c8000fd4602 - Patch
References	~~() https://git.kernel.org/stable/c/3ee59c38ae7369ad1f7b846e05633ccf0d159fab -~~	() https://git.kernel.org/stable/c/3ee59c38ae7369ad1f7b846e05633ccf0d159fab - Patch
References	~~() https://git.kernel.org/stable/c/5a53249d149f48b558368c5338b9921b76a12f8c -~~	() https://git.kernel.org/stable/c/5a53249d149f48b558368c5338b9921b76a12f8c - Patch
References	~~() https://git.kernel.org/stable/c/fd627ac8a5cff4d45269f164b13ddddc0726f2cc -~~	() https://git.kernel.org/stable/c/fd627ac8a5cff4d45269f164b13ddddc0726f2cc - Patch
CPE		cpe:2.3:o:linux:linux_kernel:6.2:rc8:::::: cpe:2.3:o:linux:linux_kernel:6.16:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.2:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.16:rc3:::::: cpe:2.3:o:linux:linux_kernel:6.16:rc5:::::: cpe:2.3:o:linux:linux_kernel:6.2:-:::::: cpe:2.3:o:linux:linux_kernel:6.2:rc6:::::: cpe:2.3:o:linux:linux_kernel:6.2:rc7:::::: cpe:2.3:o:linux:linux_kernel:6.16:rc6:::::: cpe:2.3:o:linux:linux_kernel:6.2:rc5:::::: cpe:2.3:o:linux:linux_kernel:6.2:rc3:::::: cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:6.16:rc7:::::: cpe:2.3:o:linux:linux_kernel:6.2:rc4:::::: cpe:2.3:o:linux:linux_kernel:6.16:rc1:::::: cpe:2.3:o:linux:linux_kernel:6.16:rc4::::::
CWE		NVD-CWE-noinfo
First Time		Linux linux Kernel Linux

Information

Published : 2025-07-28 12:15

Updated : 2025-11-19 17:58

NVD link : CVE-2025-38469

Mitre link : CVE-2025-38469

CVE.ORG link : CVE-2025-38469

JSON object : View

Products Affected

linux

linux_kernel

CWE

NVD-CWE-noinfo

5.5 /10