2 matches found
CVE-2022-50257
The CVE-2022-50257 issue is in the Linux kernel Xen grant handling (xen/gntdev) where partial grant mapping failures could leak grants. In paravirtualized domains (use_ptemod = true), alloced was not updated for all successful map_ops or kmap_ops, risking incorrect live_grants and leaks. The fix ...
PT-2022-35154 · Xen +1 · Xen/Gntdev +1
Name of the Vulnerable Software and Affected Versions: xen/gntdev versions v5.19 through v6.0.2 Description: The issue is related to leaking grants in xen/gntdev. The actual impact and attack plausibility have not yet been proven. It was introduced in version v5.19 and fixed in Linux Kernel versi...