Vulnerability Description
A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86_emulate_insn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 5.19 |
| Redhat | Enterprise Linux | 8.0 |
Related Weaknesses (CWE)
References
- https://bugzilla.redhat.com/show_bug.cgi?id=2089815Issue TrackingThird Party Advisory
- https://github.com/torvalds/linux/commit/fee060cd52d69c114b62d1a2948ea9648b5131fPatchThird Party Advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2089815Issue TrackingThird Party Advisory
- https://github.com/torvalds/linux/commit/fee060cd52d69c114b62d1a2948ea9648b5131fPatchThird Party Advisory
FAQ
What is CVE-2022-1852?
CVE-2022-1852 is a vulnerability with a CVSS score of 5.5 (MEDIUM). A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86_emulate_insn in arch/x86/kvm/emulate.c. This flaw occurs while executing an...
How severe is CVE-2022-1852?
CVE-2022-1852 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-1852?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Redhat Enterprise Linux.