CVE-2022-42323

Xenstore: Cooperating guests can create arbitrary numbers of nodes This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by...

UBUNTU-CVE-2022-42323

Xenstore: Cooperating guests can create arbitrary numbers of nodes This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by...

PT-2022-7323 · Xenstore +1 · Xenstore +1

Name of the Vulnerable Software and Affected Versions: Xenstore versions prior to the fix of XSA-322 Description: The issue allows cooperating guests to create an arbitrary number of Xenstore nodes. This is possible when one domain lets another write into its local Xenstore tree, creating many...

CVE-2022-42322

Xenstore: Cooperating guests can create arbitrary numbers of nodes This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by...

CVE-2022-42322

CVE-2022-42322 concerns Xenstore: cooperating guests can create an arbitrary number of Xenstore nodes. The issue arises after the XSA-322 fix, where any Xenstore node owned by a removed domain can be reassigned to Dom0. A malicious pair of guests can exploit this by: (1) host A lets host B write ...

Fedora 32 : xen (2020-df772b417b)

xenstore watch notifications lacking permission checks XSA-115, CVE-2020-29480 1908091 Xenstore: new domains inheriting existing node permissions XSA-322, CVE-2020-29481 1908095 Xenstore: wrong path length check XSA-323, CVE-2020-29482 1908096 Xenstore: guests can crash xenstored via watchs...