CVE-2022-45869

CVSS V2 None CVSS V3 None

Description

A race condition in the x86 KVM subsystem in the Linux kernel through 6.1-rc6 allows guest OS users to cause a denial of service (host OS crash or host OS memory corruption) when nested virtualisation and the TDP MMU are enabled.

Overview

CVE ID
CVE-2022-45869

Assigner
cve@mitre.org

Vulnerability Status
Analyzed

Published Version
2022-11-30T05:15:11.320

Last Modified Date
2022-12-05T20:23:27.257

Weakness Enumerations

CWE	URL
CWE-362	http://cwe.mitre.org/data/definitions/362.html

CPE Configuration (Product)

CPE	Vulnerable	Operator	Version End
cpe:2.3:a:o:linux:linux_kernel:6.1:rc1:::::*	1	OR
cpe:2.3:a:o:linux:linux_kernel:6.1:rc2:::::*	1	OR
cpe:2.3:a:o:linux:linux_kernel:6.1:rc3:::::*	1	OR
cpe:2.3:a:o:linux:linux_kernel:6.1:rc4:::::*	1	OR
cpe:2.3:a:o:linux:linux_kernel:6.1:rc5:::::*	1	OR
cpe:2.3:a:o:linux:linux_kernel:6.1:rc6:::::*	1	OR
cpe:2.3:o:linux:linux_kernel::::::::	1	OR	6.0

References

Reference URL	Reference Tags
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=47b0c2e4c220f2251fd8dcfbb44479819c715e15	Exploit Patch Vendor Advisory

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2022-45869
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45869

History

Created	Old Value	New Value	Data Type	Notes
2022-12-07 18:05:38				Added to TrackCVE