QwikSec

Security Database

CVE

CWE

Training

CVE-2022-26364

Published: Jun 9, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

x86 pv: Insufficient care with non-coherent mappings T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen maintains a type reference count for pages, in addition to a regular reference count. This scheme is used to maintain invariants required for Xen's safety, e.g. PV guests may not have direct writeable access to pagetables; updates need auditing by Xen. Unfortunately, Xen's safety logic doesn't account for CPU-induced cache non-coherency; cases where the CPU can cause the content of the cache to be different to the content in main memory. In such cases, Xen's safety logic can incorrectly conclude that the contents of a page is safe.

Vendor	Product	Versions
Xen	xen	unknown `consult Xen advisory XSA-402`

References

https://xenbits.xenproject.org/xsa/advisory-402.txt

x_refsource_MISC

http://xenbits.xen.org/xsa/advisory-402.html

x_refsource_CONFIRM

[oss-security] 20220609 Xen Security Advisory 402 v4 (CVE-2022-26363,CVE-2022-26364) - x86 pv: Insufficient care with non-coherent mappings

mailing-list

x_refsource_MLIST

FEDORA-2022-0142d562ca

vendor-advisory

x_refsource_FEDORA

http://packetstormsecurity.com/files/167710/Xen-PV-Guest-Non-SELFSNOOP-CPU-Memory-Corruption.html

x_refsource_MISC

vendor-advisory

x_refsource_DEBIAN

FEDORA-2022-2c9f8224f8

vendor-advisory

x_refsource_FEDORA

vendor-advisory

x_refsource_GENTOO

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.