CVE-2022-49559

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.17.0-rc3+

Description A vulnerability in the Linux kernel has been identified, specifically in the KVM (Kernel-based Virtual Machine) component for x86 architecture. The issue arises from the handling of triple faults in L2 (nested virtualization) and how userspace can induce KVM REQ TRIPLE FAULT without going through KVM RUN, which guarantees the handling of the triple fault by kvm check nested state(). This can be triggered if userspace injects a machine check while L2 is active and CR4.MCE=0. The vulnerability does not specify the number of potentially affected devices or details about real-world incidents.

Recommendations For Linux kernel versions prior to 5.17.0-rc3+, update to a version that includes the fix for the KVM x86 triple fault handling issue. As a temporary workaround, consider restricting the use of nested virtualization until a patch is available.