CVE-2022-49610

Published: Feb 26, 2025

Modified: May 23, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Prevent RSB underflow before vmenter On VMX, there are some balanced returns between the time the guest's SPEC_CTRL value is written, and the vmenter. Balanced returns (matched by a preceding call) are usually ok, but it's at least theoretically possible an NMI with a deep call stack could empty the RSB before one of the returns. For maximum paranoia, don't allow *any* returns (balanced or otherwise) between the SPEC_CTRL write and the vmenter. [ bp: Fix 32-bit build. ]

Vendor	Product	Versions
Linux	Linux	affected `d28b387fb74da95d69d2615732f50cceb38e9a4d - < afd743f6dde87296c6f3414706964c491bb85862` affected `d28b387fb74da95d69d2615732f50cceb38e9a4d - < 07853adc29a058c5fd143c14e5ac528448a72ed9` affected `44491a23b73789c0a914af4ea55ccf8968adf90b` affected `fc6aae9f407810cb153a9133c28735871f9f0a16` affected `3.16.57 - < 3.17` +1 more versions
Linux	Linux	affected `4.16` unaffected `0 - < 4.16` unaffected `5.18.14 - <= 5.18.` unaffected `5.19 - <= `

References

https://git.kernel.org/stable/c/afd743f6dde87296c6f3414706964c491bb85862

https://git.kernel.org/stable/c/07853adc29a058c5fd143c14e5ac528448a72ed9

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-49610

Description

Affected Products

References