cvelistv5 - cve-2025-38064

CVE-2025-38064 (GCVE-0-2025-38064)

Vulnerability from cvelistv5 – Published: 2025-06-18 09:33 – Updated: 2025-06-18 09:33

Summary

In the Linux kernel, the following vulnerability has been resolved: virtio: break and reset virtio devices on device_shutdown() Hongyu reported a hang on kexec in a VM. QEMU reported invalid memory accesses during the hang. Invalid read at addr 0x102877002, size 2, region '(null)', reason: rejected Invalid write at addr 0x102877A44, size 2, region '(null)', reason: rejected ... It was traced down to virtio-console. Kexec works fine if virtio-console is not in use. The issue is that virtio-console continues to write to the MMIO even after underlying virtio-pci device is reset. Additionally, Eric noticed that IOMMUs are reset before devices, if devices are not reset on shutdown they continue to poke at guest memory and get errors from the IOMMU. Some devices get wedged then. The problem can be solved by breaking all virtio devices on virtio bus shutdown, then resetting them.

Severity ?

No CVSS data available.

Assigner

Linux

References

URL

Tags

	https://git.kernel.org/stable/c/aee42f3d57bfa37b2…
	https://git.kernel.org/stable/c/8bd2fa086a0488679…

Impacted products

Vendor

Product

Version

Linux

Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < aee42f3d57bfa37b2716df4584edeecf63b9df4c (git)
Affected: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 , < 8bd2fa086a04886798b505f28db4002525895203 (git)

Linux

Unaffected: 6.14.9 , ≤ 6.14.* (semver)
Unaffected: 6.15 , ≤ * (original_commit_for_fix)

Show details on NVD website

Vendor	Product	Description
Ubuntu	Ubuntu	Ubuntu 20.04 ESM
Ubuntu	Ubuntu	Ubuntu 24.04 LTS
Ubuntu	Ubuntu	Ubuntu 25.04
Ubuntu	Ubuntu	Ubuntu 18.04 ESM
Ubuntu	Ubuntu	Ubuntu 22.04 LTS

Vendor	Product	Description
SUSE	N/A	SUSE Linux Enterprise Real Time 15 SP6
SUSE	N/A	SUSE Linux Enterprise Server 15 SP6
SUSE	N/A	SUSE Linux Enterprise Server for SAP Applications 15 SP6
SUSE	N/A	SUSE Real Time Module 15-SP6
SUSE	N/A	SUSE Linux Micro 6.1
SUSE	N/A	SUSE Linux Enterprise Live Patching 15-SP6
SUSE	N/A	openSUSE Leap 15.6

Vendor	Product	Description
Ubuntu	Ubuntu	Ubuntu 16.04 ESM
Ubuntu	Ubuntu	Ubuntu 20.04 ESM
Ubuntu	Ubuntu	Ubuntu 24.04 LTS
Ubuntu	Ubuntu	Ubuntu 25.04
Ubuntu	Ubuntu	Ubuntu 18.04 ESM
Ubuntu	Ubuntu	Ubuntu 14.04 ESM
Ubuntu	Ubuntu	Ubuntu 22.04 LTS

Vendor	Product	Description
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE	SUSE Linux Enterprise High Availability Extension	SUSE Linux Enterprise High Availability Extension 15 SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3 LTSS
SUSE	Confidential Computing Module	Confidential Computing Module 15-SP6
SUSE	openSUSE Leap	openSUSE Leap 15.5
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12 SP5 LTSS
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP7
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.2
SUSE	openSUSE Leap	openSUSE Leap 15.3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP6
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.2
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.3
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 12-SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security
SUSE	openSUSE Leap	openSUSE Leap 15.4
SUSE	SUSE Manager Server	SUSE Manager Server 4.3 LTS
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP6
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP7
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12 SP5
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.2
SUSE	SUSE Manager Server	SUSE Manager Server 4.2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP4 LTSS
SUSE	SUSE Linux Enterprise High Availability Extension	SUSE Linux Enterprise High Availability Extension 15 SP3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.1
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.4
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
SUSE	SUSE Enterprise Storage	SUSE Enterprise Storage 7.1
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE	openSUSE Leap	openSUSE Leap 15.6
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.3
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.3 LTS
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP5
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP6
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP4
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 4.3
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP7
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro for Rancher 5.2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 11 SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE	SUSE Linux Enterprise High Performance Computing	SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.5
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP4
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP6
SUSE	SUSE Manager Retail Branch Server	SUSE Manager Retail Branch Server 4.3 LTS
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP7
SUSE	SUSE Manager Server	SUSE Manager Server 4.3
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3 Business Critical Linux
SUSE	SUSE Real Time Module	SUSE Real Time Module 15-SP7
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP3
SUSE	SUSE Linux Enterprise Micro	SUSE Linux Enterprise Micro 5.4
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE

Vendor	Product	Description
SUSE	Basesystem Module	Basesystem Module 15-SP6
SUSE	Basesystem Module	Basesystem Module 15-SP7
SUSE	openSUSE Leap	openSUSE Leap 15.6
SUSE	Public Cloud Module	Public Cloud Module 15-SP6
SUSE	Public Cloud Module	Public Cloud Module 15-SP7
SUSE	SUSE Linux Enterprise Desktop	SUSE Linux Enterprise Desktop 15 SP6
SUSE	SUSE Linux Enterprise Desktop	SUSE Linux Enterprise Desktop 15 SP7
SUSE	SUSE Linux Enterprise High Availability Extension	SUSE Linux Enterprise High Availability Extension 15 SP6
SUSE	SUSE Linux Enterprise High Availability Extension	SUSE Linux Enterprise High Availability Extension 15 SP7
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP6
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 15-SP7
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP6
SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time 15 SP7
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP6
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 15 SP7
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP6
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for SAP Applications 15 SP7
SUSE	Development Tools Module	Development Tools Module 15-SP6
SUSE	Development Tools Module	Development Tools Module 15-SP7
SUSE	Legacy Module	Legacy Module 15-SP6
SUSE	Legacy Module	Legacy Module 15-SP7
SUSE	SUSE Linux Enterprise Workstation Extension	SUSE Linux Enterprise Workstation Extension 15 SP6
SUSE	SUSE Linux Enterprise Workstation Extension	SUSE Linux Enterprise Workstation Extension 15 SP7

	URL	Tags
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/8bd2fa086a04886798b505f28db4002525895203	Patch
	416baaa9-dc9f-4396-8d5f-8c081fb06d67	https://git.kernel.org/stable/c/aee42f3d57bfa37b2716df4584edeecf63b9df4c	Patch

Action not permitted

CVE-2025-38064 (GCVE-0-2025-38064)

Solutions

Solutions

Solutions

Solutions

Solutions

Solutions

Solutions

Solutions

Solutions

Solutions

Solutions

Solutions

Tags

Sightings

Nomenclature