5 matches found
ALPINE-CVE-2023-46835
The current setup of the quarantine page tables assumes that the quarantine domain domio has been initialized with an address width of DEFAULTDOMAINADDRESSWIDTH 48 and hence 4 page table levels. However domio being a PV domain gets the AMD-Vi IOMMU page tables levels based on the maximum hot...
CVE-2023-46835
The current setup of the quarantine page tables assumes that the quarantine domain domio has been initialized with an address width of DEFAULTDOMAINADDRESSWIDTH 48 and hence 4 page table levels. However domio being a PV domain gets the AMD-Vi IOMMU page tables levels based on the maximum hot...
Code injection
The current setup of the quarantine page tables assumes that the quarantine domain domio has been initialized with an address width of DEFAULTDOMAINADDRESSWIDTH 48 and hence 4 page table levels. However domio being a PV domain gets the AMD-Vi IOMMU page tables levels based on the maximum hot...
CVE-2023-46835
CVE-2023-46835 affects Xen on x86/AMD with a mismatch in IOMMU quarantine page table levels. The quarantine domain (dom_io) expects 4 page table levels (DEFAULT_DOMAIN_ADDRESS_WIDTH 48), but on PV domains the AMD-Vi IOMMU page tables can be configured with only 3 levels for RAM up to 512 GB. Cons...
SUSE-SU-2022:2158-1 Security update for xen
This update for xen fixes the following issues: - CVE-2022-26356: Fixed potential race conditions in dirty memory tracking that could cause a denial of service in the host bsc1197423. - CVE-2022-26357: Fixed a potential race condition in memory cleanup for hosts using VT-d IOMMU hardware, which...