Vulnerability in AMD Processors Affecting Hypervisor Control
CVE-2022-42336

3.3LOW

Key Information:

Vendor: Xen Project
Status: Xen Project
Vendor: CVE Published:; 17 May 2023

What is CVE-2022-42336?

This vulnerability involves the incorrect management of the SSBD (Speculative Store Bypass Disable) setting on AMD Family 17h and Hygon Family 18h processors. The SSBD setting requires coordination at the core level due to its shared nature among threads. The current implementation utilizes a counter to track the number of threads requiring SSBD to be active. However, there is a flaw that can lead to underflow or overflow of this counter during guest operations, potentially causing the saturation of the SSBD state. This results in the hypervisor incorrectly assessing the SSBD state for threads on the same core, leaving those threads without the intended protection, which could be exploited by malicious actors.

Affected Version(s)

xen consult Xen advisory XSA-431

References

https://xenbits.xenproject.org/xsa/advisory-431.txt

https://lists.fedoraproject.org/archives/list/package-ann...

vendor-advisory

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 17, 2023
Vulnerability Reserved
Oct 3, 2022

Xen Project

What is CVE-2022-42336?

Affected Version(s)

References

CVSS V3.1

Timeline