CVE-2022-42322
CVE-2022-42322 concerns Xenstore: cooperating guests can create an arbitrary number of Xenstore nodes. The issue arises after the XSA-322 fix, where any Xenstore node owned by a removed domain can be reassigned to Dom0. A malicious pair of guests can exploit this by: (1) host A lets host B write ...