CVE-2022-42334

Name
CVE-2022-42334
Description
x86/HVM pinned cache attributes mis-handling T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] To allow cachability control for HVM guests with passed through devices, an interface exists to explicitly override defaults which would otherwise be put in place. While not exposed to the affected guests themselves, the interface specifically exists for domains controlling such guests. This interface may therefore be used by not fully privileged entities, e.g. qemu running deprivileged in Dom0 or qemu running in a so called stub-domain. With this exposure it is an issue that - the number of the such controlled regions was unbounded (CVE-2022-42333), - installation and removal of such regions was not properly serialized (CVE-2022-42334).
NVD Severity
unknown
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://xenbits.xenproject.org/xsa/advisory-428.txt
CONFIRM http://xenbits.xen.org/xsa/advisory-428.html
MLIST http://www.openwall.com/lists/oss-security/2023/03/21/2
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/
DEBIAN https://www.debian.org/security/2023/dsa-5378
MISC https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/
MISC https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/
security@xen.org https://security.gentoo.org/glsa/202402-07

Match rules

CPE URI Source package Min version Max version
cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:* xen >= 4.11.0 <= 4.17.0

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
xen 3.14-main 4.15.4-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
xen 3.15-main 4.15.5-r4 Natanael Copa <ncopa@alpinelinux.org> fixed
xen 3.16-main 4.16.6-r0 Natanael Copa <ncopa@alpinelinux.org> fixed
xen 3.17-main 4.16.6-r2 Natanael Copa <ncopa@alpinelinux.org> fixed