Vulnerability Description
In versions prior to 0.8.1, the linux-loader crate uses the offsets and sizes provided in the ELF headers to determine the offsets to read from. If those offsets point beyond the end of the file this could lead to Virtual Machine Monitors using the `linux-loader` crate entering an infinite loop if the ELF header of the kernel they are loading was modified in a malicious manner. This issue has been addressed in 0.8.1. The issue can be mitigated by ensuring that only trusted kernel images are loaded or by verifying that the headers do not point beyond the end of the file.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux-Loader Project | Linux-Loader | < 0.8.1 |
Related Weaknesses (CWE)
References
- https://github.com/rust-vmm/linux-loader/pull/125Issue TrackingPatchThird Party Advisory
- https://github.com/rust-vmm/linux-loader/security/advisories/GHSA-52h2-m2cf-9jh6Issue TrackingThird Party Advisory
- https://github.com/rust-vmm/linux-loader/pull/125Issue TrackingPatchThird Party Advisory
- https://github.com/rust-vmm/linux-loader/security/advisories/GHSA-52h2-m2cf-9jh6Issue TrackingThird Party Advisory
FAQ
What is CVE-2022-23523?
CVE-2022-23523 is a vulnerability with a CVSS score of 4.0 (MEDIUM). In versions prior to 0.8.1, the linux-loader crate uses the offsets and sizes provided in the ELF headers to determine the offsets to read from. If those offsets point beyond the end of the file this ...
How severe is CVE-2022-23523?
CVE-2022-23523 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-23523?
Check the references section above for vendor advisories and patch information. Affected products include: Linux-Loader Project Linux-Loader.