CVE-2022-49556
Published: Feb 26, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel data leak For some sev ioctl interfaces, the length parameter that is passed maybe less than or equal to SEV_FW_BLOB_MAX_SIZE, but larger than the data that PSP firmware returns. In this case, kmalloc will allocate memory that is the size of the input rather than the size of the data. Since PSP firmware doesn't fully overwrite the allocated buffer, these sev ioctl interface may return uninitialized kernel slab memory.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected eaf78265a4ab33935d3a0f1407ce4a91aac4d4d5 - < 401bef1f95de92c3a8c6eece46e02fa88d7285eeaffected eaf78265a4ab33935d3a0f1407ce4a91aac4d4d5 - < d8fdb4b24097472ff6b3c0559448200d420b1418affected eaf78265a4ab33935d3a0f1407ce4a91aac4d4d5 - < bbdcc644b59e01e98c68894a9fab42b9687f42b0affected eaf78265a4ab33935d3a0f1407ce4a91aac4d4d5 - < 57a01725339f9d82b099102ba2751621b1caab93affected eaf78265a4ab33935d3a0f1407ce4a91aac4d4d5 - < d22d2474e3953996f03528b84b7f52cc26a39403 |
Linux | Linux | affected 5.7unaffected 0 - < 5.7unaffected 5.10.124 - <= 5.10.*unaffected 5.15.45 - <= 5.15.*unaffected 5.17.13 - <= 5.17.*+2 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now