Kernel Vulnerability in Linux Affecting XenServer 6.1 by Citrix
CVE-2025-38046

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 June 2025

What is CVE-2025-38046?

A compatibility issue has been identified in the Linux kernel regarding XenServer 6.1. Specifically, when running on a Windows machine, a platform device is utilized with a different ID than expected. This leads to initialization failures and potential system crashes, particularly when encountering an unrecognized Xen platform device during operation. The related system logs indicate errors stemming from the grant tables, which are critical for managing resource sharing between domains. Therefore, systems relying on this configuration need attention to address these initialization problems.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 5239ba49ad23a2285b4c2d15bec71566d32e0300

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 7258b92ceff342912945eaaf8787ca3b83dbae21

References

https://git.kernel.org/stable/c/baedd1ef924d2b04d6223e0e1...

https://git.kernel.org/stable/c/5239ba49ad23a2285b4c2d15b...

https://git.kernel.org/stable/c/7258b92ceff342912945eaaf8...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 18, 2025
Vulnerability Reserved
Apr 16, 2025