CVE-2022-48727

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the fixup guest exit function in the arm64 subsystem of the Linux kernel's KVM component. It occurs when an SError is synchronized, and the vcpu->arch.fault.esr el2 value is updated from the hardware register. If an IRQ synchronizes an SError, the vcpu's esr value becomes stale. This can cause KVM to corrupt the ELR EL2 register, leading to an unrelated guest instruction being executed twice. The problem arises when the previous non-IRQ exception was an HVC, and KVM attempts to process the SError first and re-execute the HVC if the guest survives the SError.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.