CVE-2022-49660

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A race condition exists in the Linux kernel's xen/arm component, specifically in the RB-tree based P2M accounting. The issue arises from concurrent calls to set phys to machine multi() by set foreign p2m mapping() and clear foreign p2m mapping(), which can lead to incorrect mappings updates in the RB-tree. This might result in failures when mapping foreign pages, and potentially other consequences such as use-after-free. The issue is more likely to occur when the PV net backend is running.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.