CVE-2022-1789

Published: May 31, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

With shadow paging enabled, the INVPCID instruction results in a call to kvm_mmu_invpcid_gva. If INVPCID is executed with CR0.PG=0, the invlpg callback is not set and the result is a NULL pointer dereference.

Vendor	Product	Versions
n/a	kernel	affected `no patch information available yet`

Weaknesses (CWE)

CWE-476

References

https://francozappa.github.io/about-bias/

x_refsource_MISC

https://bugzilla.redhat.com/show_bug.cgi?id=1832397

x_refsource_MISC

https://kb.cert.org/vuls/id/647177/

x_refsource_MISC

FEDORA-2022-ef8c8a5925

vendor-advisory

x_refsource_FEDORA

FEDORA-2022-be819b07a3

vendor-advisory

x_refsource_FEDORA

FEDORA-2022-3b86247c11

vendor-advisory

x_refsource_FEDORA

DSA-5161

vendor-advisory

x_refsource_DEBIAN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-1789

Description

Affected Products

Weaknesses (CWE)

References