CVE-2022-49884

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, related to the KVM (Kernel-based Virtual Machine) component. The issue involves the initialization of locks in the gfn to pfn cache, which can lead to race conditions. For example, a race between the ioctl(KVM XEN HVM EVTCHN SEND) and kvm gfn to pfn cache init() functions can cause a corrupted shinfo gpc lock. To address this, the initialization of the gfn to pfn cache locks has been moved to a dedicated helper function, which is called during VM or vCPU creation. Additionally, the "cache init" and "cache destroy" functions have been renamed to "activate" and "deactivate" to avoid implying that the cache is destroyed or freed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.