CVE-2022-42320Incomplete Cleanup in XEN

CWE-459Incomplete Cleanup4 documents4 sources
Severity
7.0HIGHNVD
EPSS
0.0%
top 85.36%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
XENDebian XENDebian Linux+1 more
Timeline
PublishedNov 1

Description

Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid. When a domain is gone, there might be Xenstore nodes left with access rights containing the domid of the removed domain. This is normally no problem, as those access right entries will be corrected when such a node is written later. There is a small time window when a new domain is created, where the access rights of a past domain with the same domid as the new one will be regarded

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages2 packages

debiandebian/xen< xen 4.16.2+90-g0d39a6d1ae-1 (bookworm)
Debianxen/xen< 4.14.5+86-g1c354767d5-1+3

Also affects: Debian Linux 11.0, Fedora 35, 36, 37

Patches

Patch: xenbits.xen.orgPatch: xenbits.xenproject.orgPatch: xenbits.xen.org

🔴Vulnerability Details

2
OSV
CVE-2022-42320: Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid2022-11-01
GHSA
GHSA-p263-3p34-m82m: Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid2022-11-01

📋Vendor Advisories

1
Debian
CVE-2022-42320: xen - Xenstore: Guests can get access to Xenstore nodes of deleted domains Access righ...2022