2 matches found
CVE-2022-50168
CVE-2022-50168 (Linux kernel) : A race/cleanup bug in BPF JIT on x86 allowed freeing of a not-finalized bpf_prog_pack, triggered when multiple subprogs are processed. The root cause was that jit_subprogs() could free subprograms before bpf_jit_binary_pack_finalize() had run for them, risking free...
Design/Logic Flaw
The setdebugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when running on x86-64 systems, allows local OS guest users to cause a denial of service host crash by writing to the reserved bits of the DR7 debug control register...