CVE-2022-1789NULL Pointer Dereference in Kernel

CWE-476NULL Pointer DereferenceCWE-843Type Confusion18 documents9 sources
Severity
6.8MEDIUMNVD
OSV7.8OSV5.5CISA8.8
EPSS
0.0%
top 95.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Linux KernelDebian LinuxFedoraproject Fedora+1 more
Timeline
PublishedJun 2
Latest updateAug 10

Description

With shadow paging enabled, the INVPCID instruction results in a call to kvm_mmu_invpcid_gva. If INVPCID is executed with CR0.PG=0, the invlpg callback is not set and the result is a NULL pointer dereference.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 0.9 | Impact: 5.9

Affected Packages4 packages

Debianlinux/linux_kernel< 5.10.120-1+3
Ubuntulinux/linux_kernel< 5.4.0-122.138+1
CVEListV5linux/linux_kernelno patch information available yet

Also affects: Debian Linux 11.0, Fedora 34, 35, 36, Enterprise Linux 9.0

🔴Vulnerability Details

9
OSV
linux-intel-iotg vulnerabilities2022-08-10
OSV
linux-bluefield, linux-gcp-5.4, linux-gke-5.4 vulnerabilities2022-07-28
OSV
linux-oem-5.17 vulnerabilities2022-07-21
OSV
linux, linux-aws, linux-azure, linux-gcp, linux-gke, linux-ibm, linux-kvm, linux-lowlatency, linux-oracle, linux-raspi vulnerabilities2022-07-14
OSV
linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-azure-fde, linux-gcp, linux-gke, linux-gkeop, linux-gkeop-5.4, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-oracle, li2022-07-13

📋Vendor Advisories

8
Ubuntu
Linux kernel (Intel IoTG) vulnerabilities2022-08-10
Ubuntu
Linux kernel vulnerabilities2022-07-28
Ubuntu
Linux kernel (OEM) vulnerabilities2022-07-21
Ubuntu
Linux kernel vulnerabilities2022-07-14
Ubuntu
Linux kernel vulnerabilities2022-07-13
CVE-2022-1789 — NULL Pointer Dereference in Kernel | cvebase