PT-2022-6256 · Linux+9 · Linux Kernel+9

Kazuki Takiguchi

·

Published

2022-11-23

·

Updated

2025-04-24

·

CVE-2022-45869

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions through 6.1-rc6
Description A race condition in the x86 KVM subsystem allows guest OS users to cause a denial of service, resulting in a host OS crash or host OS memory corruption when nested virtualisation and the TDP MMU are enabled.
Recommendations For Linux kernel versions through 6.1-rc6, as a temporary workaround, consider disabling nested virtualisation and the TDP MMU to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

ALSA-2023:4377
ALSA-2023:4378
ALSA-2023:7077
ALT-PU-2022-3364
ALT-PU-2022-3371
ALT-PU-2023-1023
ALT-PU-2023-1064
ALT-PU-2023-1684
ALT-PU-2023-1741
ALT-PU-2023-1814
ALT-PU-2023-4894
AZL-11574
BDU:2023-00670
CESA-2023_6901
CESA-2023_7077
CVE-2022-45869
MGASA-2022-0477
MGASA-2022-0478
OPENSUSE-SU-2022_4504-1
OPENSUSE-SU-2022_4585-1
OPENSUSE-SU-2022_4617-1
RHSA-2023:4377
RHSA-2023:4378
RHSA-2023:6901
RHSA-2023:7077
RHSA-2023_4377
RHSA-2023_4378
RHSA-2023_6901
RHSA-2023_7077
RHSA-2024:1188
RHSA-2024:1404
RLSA-2023:4378
SUSE-SU-2022:4504-1
SUSE-SU-2022:4585-1
SUSE-SU-2022:4617-1
USN-5911-1
USN-5912-1
USN-5929-1
USN-5935-1
USN-5938-1
USN-5941-1
USN-5950-1
USN-5962-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Rocky Linux
Suse
Ubuntu