CVE-2025-23161: 
Linux Kernel vulnerability analysis and mitigation

CVE-2025-23161 is a vulnerability discovered in the Linux kernel related to the PCI Virtual Machine Device (VMD) component. The vulnerability was first reported on May 1, 2025, and involves incorrect lock type usage in the VMD device configuration space access mechanism (Wiz, NVD).

The vulnerability stems from the vmddev::cfglock being implemented as a spinlockt instead of a rawspinlockt type. This becomes problematic because on PREEMPTRT systems, spinlockt becomes a sleeping lock, which cannot be acquired with disabled interrupts. The PCI config space access via pciops::read and pci_ops::write requires low-level hardware access with disabled interrupts, making the current implementation incompatible. The vulnerability has been assigned a CVSS v3.1 Base Score of 5.5 (Moderate) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (Wiz, Red Hat).

The vulnerability can cause system instability when accessing PCI configuration space under specific conditions, particularly on systems running with PREEMPT_RT (real-time) kernel configurations. This manifests as a BUG condition when attempting to access the VMD configuration space with interrupts disabled (Wiz).

The issue has been fixed by changing vmddev::cfglock to a rawspinlockt type. Fixed versions are available in Linux kernel 6.1.135-1 for Debian bookworm and 6.12.25-1 for Debian sid. Red Hat Enterprise Linux 9 has deferred the fix for both kernel and kernel-rt packages (Debian Tracker, Red Hat).