A flaw was found in the Linux kernel’s KVM when attempting to set a SynIC IRQ. This issue makes it possible for a misbehaving VMM to write to SYNIC/STIMER MSRs causing a NULL pointer dereference. This flaw allows an unprivileged local attacker on the host to issue specific ioctl calls causing a kernel oops condition that results in a denial of service.

🗓️ 07 Sep 2022 07:00:00Reported by MicrosoftType

Linux kernel KVM flaw lets VMM write SynIC MSRs, causing pointer dereference and denial of service.

Reporter	Title	Published	Views	Family All 410
ATTACKERKB	CVE-2022-2153	31 Aug 202216:15	–	attackerkb
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2-2022-1838 (ALAS-2022-1838)	15 Sep 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2-2022-1852 (ALAS-2022-1852)	10 Oct 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2022-020 (ALASKERNEL-5.10-2022-020)	14 Oct 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2022-036 (ALASKERNEL-5.4-2022-036)	14 Oct 202200:00	–	nessus
Tenable Nessus	Amazon Linux AMI : kernel (ALAS-2022-1636)	10 Oct 202200:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0158: cloud-kernel bugfix, enhancement and (ALINUX3-SA-2022:0158)	14 May 202500:00	–	nessus
Tenable Nessus	Debian DLA-3065-1 : linux - LTS security update	2 Jul 202200:00	–	nessus
Tenable Nessus	Debian dla-3131 : hyperv-daemons - security update	2 Oct 202200:00	–	nessus
Tenable Nessus	Debian dla-3173 : linux-config-5.10 - security update	2 Nov 202200:00	–	nessus