Race Condition Vulnerability in Linux PV Device Frontends Impacting Xen
CVE-2022-23042

7HIGH

Key Information:

Vendor: Unspecified
Status: Unspecified
Vendor: CVE Published:; 10 March 2022

🔔 Create Unspecified Vulnerability Alert

What is CVE-2022-23042?

Multiple Linux PV device frontends are susceptible to a race condition vulnerability that may lead to unauthorized access to memory pages and potential denial of service scenarios. This flaw arises from improper handling of grant table interfaces, where frontends inconsistently verify the status of grant references. Consequently, a malicious backend could maintain access to a memory page even after it has been ostensibly freed, exposing systems to data leaks and potential corruption. Various frontends, including blkfront, netfront, scsifront, and gntalloc, demonstrate this vulnerability by failing to synchronize the freeing of grant references with access revocation, allowing for serious security implications.

Affected Version(s)

unspecified consult Xen advisory XSA-396

References

https://xenbits.xenproject.org/xsa/advisory-396.txt

x_refsource_MISC

https://lists.debian.org/debian-lts-announce/2022/07/msg0...

mailing-listx_refsource_MLIST

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 10, 2022
Vulnerability Reserved
Jan 10, 2022

Credit

{'credit_data': {'description': {'description_data': [{'lang': 'eng', 'value': 'This issue was discovered by Demi Marie Obenour and Simon Gaiser of\nInvisible Things Lab.'}]}}}