Vulnerability Description
lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call was inserted on an error handling path. While doing so, locking requirements were not paid attention to. As a result two cooperating guests granting each other transitive grants can cause locks to be acquired nested within one another, but in respectively opposite order. With suitable timing between the involved grant copy operations this may result in the locking up of a CPU.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Xen | Xen | >= 4.0 |
| Fedoraproject | Fedora | 35 |
| Debian | Debian Linux | 11.0 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2022/10/11/2Mailing ListMitigationPatch
- http://xenbits.xen.org/xsa/advisory-411.htmlMitigationPatchVendor Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://security.gentoo.org/glsa/202402-07
- https://www.debian.org/security/2022/dsa-5272Third Party Advisory
- https://xenbits.xenproject.org/xsa/advisory-411.txtMitigationPatchVendor Advisory
- http://www.openwall.com/lists/oss-security/2022/10/11/2Mailing ListMitigationPatch
- http://xenbits.xen.org/xsa/advisory-411.htmlMitigationPatchVendor Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://security.gentoo.org/glsa/202402-07
- https://www.debian.org/security/2022/dsa-5272Third Party Advisory
FAQ
What is CVE-2022-33748?
CVE-2022-33748 is a vulnerability with a CVSS score of 5.6 (MEDIUM). lock order inversion in transitive grant copy handling As part of XSA-226 a missing cleanup call was inserted on an error handling path. While doing so, locking requirements were not paid attention to...
How severe is CVE-2022-33748?
CVE-2022-33748 has been rated MEDIUM with a CVSS base score of 5.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-33748?
Check the references section above for vendor advisories and patch information. Affected products include: Xen Xen, Fedoraproject Fedora, Debian Debian Linux.