Vulnerability Description
Insufficient cleanup of passed-through device IRQs The management of IRQs associated with physical devices exposed to x86 HVM guests involves an iterative operation in particular when cleaning up after the guest's use of the device. In the case where an interrupt is not quiescent yet at the time this cleanup gets invoked, the cleanup attempt may be scheduled to be retried. When multiple interrupts are involved, this scheduling of a retry may get erroneously skipped. At the same time pointers may get cleared (resulting in a de-reference of NULL) and freed (resulting in a use-after-free), while other code would continue to assume them to be valid.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Xen | Xen | >= 4.6.0 |
| Fedoraproject | Fedora | 34 |
| Debian | Debian Linux | 11.0 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2022/01/25/4Mailing ListPatchThird Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://security.gentoo.org/glsa/202208-23Third Party Advisory
- https://www.debian.org/security/2022/dsa-5117Third Party Advisory
- https://xenbits.xenproject.org/xsa/advisory-395.txtVendor Advisory
- http://www.openwall.com/lists/oss-security/2022/01/25/4Mailing ListPatchThird Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://security.gentoo.org/glsa/202208-23Third Party Advisory
- https://www.debian.org/security/2022/dsa-5117Third Party Advisory
- https://xenbits.xenproject.org/xsa/advisory-395.txtVendor Advisory
FAQ
What is CVE-2022-23035?
CVE-2022-23035 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Insufficient cleanup of passed-through device IRQs The management of IRQs associated with physical devices exposed to x86 HVM guests involves an iterative operation in particular when cleaning up afte...
How severe is CVE-2022-23035?
CVE-2022-23035 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-23035?
Check the references section above for vendor advisories and patch information. Affected products include: Xen Xen, Fedoraproject Fedora, Debian Debian Linux.