CVE-2022-39189
published 2022-09-02CVE-2022-39189: An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush operations are mishandled in certain KVM_VCPU_PREEMPTED situations.
Affected
19 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | linux | < linux 5.19.6-1 (bookworm) | linux 5.19.6-1 (bookworm) |
| android | — | — | |
| linux | linux_kernel | >= 0 < 5.10.191-1 | 5.10.191-1 |
| linux | linux_kernel | >= 0 < 5.19.6-1 | 5.19.6-1 |
| linux | linux_kernel | >= 0 < 5.19.6-1 | 5.19.6-1 |
| linux | linux_kernel | >= 0 < 5.19.6-1 | 5.19.6-1 |
| linux | linux_kernel | >= 0 < 5.15.0-50.56 | 5.15.0-50.56 |
| linux | linux_kernel | >= 4.16 < 5.4.244 | 5.4.244 |
| linux | linux_kernel | >= 5.11 < 5.15.60 | 5.15.60 |
| linux | linux_kernel | >= 5.16 < 5.18.17 | 5.18.17 |
| linux | linux_kernel | >= 5.5.0 < 5.10.180 | 5.10.180 |
| msrc | cbl2_kernel_5.15.67.1-4_on_cbl_mariner_2.0 | — | — |
| msrc | cm1_kernel_5.10.181.1-1_on_cbl_mariner_1.0 | — | — |
| netapp | hci_baseboard_management_controller | — | — |
| netapp | hci_baseboard_management_controller | — | — |
| netapp | hci_baseboard_management_controller | — | — |
| netapp | hci_baseboard_management_controller | — | — |
| netapp | hci_baseboard_management_controller | — | — |
| paloalto | pan-os | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH