Lucene search

K

GoogleOSV:CVE-2022-42309

HistoryNov 01, 2022 - 1:15 p.m.

CVE-2022-42309

2022-11-0113:15:11

Google

osv.dev

7

0.0004 Low

EPSS

Percentile

13.9%

Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can cause xenstored to use a wrong pointer during node creation in an error path, resulting in a crash of xenstored or a memory corruption in xenstored causing further damage. Entering the error path can be controlled by the guest e.g. by exceeding the quota value of maximum nodes per domain.

CPENameOperatorVersion
xeneq4.4.1-r0
xeneq4.3.1-r3
xeneq4.1.2-r9
xeneq4.9.0-r2
xeneq4.12.0-r0
xeneq4.7.1-r5
xeneq4.9.1-r1
xeneq4.14.1-r2
xeneq4.15.2-r1
xeneq4.1.0-r2

Rows per page:

1-10 of 2031

References

www.openwall.com/lists/oss-security/2022/11/01/4

xenbits.xen.org/xsa/advisory-414.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/

security.gentoo.org/glsa/202402-07

www.debian.org/security/2022/dsa-5272

xenbits.xenproject.org/xsa/advisory-414.txt

0.0004 Low

EPSS

Percentile

13.9%

Related for OSV:CVE-2022-42309

ubuntucve1 nessus15 cve1 xen1 prion1 cvelist1 debiancve1 veracode1 openvas12 osv1 fedora3 debian1 gentoo1