Speculative Vulnerability in 32bit SYSCALL Path for Xen Project
CVE-2022-42331

5.5MEDIUM

Key Information:

Vendor: Xen Project
Status: Xen Project
Vendor: CVE Published:; 21 March 2023

🔔 Create Xen Project Vulnerability Alert

What is CVE-2022-42331?

This vulnerability stems from a late execution of speculation-safety actions in the 32bit SYSCALL path of the Xen Hypervisor, potentially allowing attackers to exploit an unprotected RET instruction. Such an oversight from the original Spectre/Meltdown mitigation efforts opens avenues for speculative attacks under certain configurations, leading to possible information leaks or system integrity issues.

Affected Version(s)

xen consult Xen advisory XSA-429

References

https://xenbits.xenproject.org/xsa/advisory-429.txt

http://www.openwall.com/lists/oss-security/2023/03/21/3

mailing-list

http://xenbits.xen.org/xsa/advisory-429.html

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 21, 2023
Vulnerability Reserved
Oct 3, 2022

Credit

{'credit_data': {'description': {'description_data': [{'lang': 'eng', 'value': 'This issue was discovered by Andrew Cooper of XenServer.'}]}}}