CVE-2022-42335

Name of the Vulnerable Software and Affected Versions Xen (affected versions not specified)

Description The issue arises in environments where host assisted address translation is necessary but Hardware Assisted Paging (HAP) is unavailable, causing Xen to run guests in shadow mode. Due to insufficient checks in hypervisor routines for shadow page handling, a guest with a passed-through PCI device can cause the hypervisor to access an arbitrary pointer partially under guest control.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.