#VU63166 Out-of-bounds write in Linux kernel - CVE-2022-1158


Vulnerability identifier: #VU63166

Vulnerability risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-1158

CWE-ID: CWE-787

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a remote user to perform a denial of service (DoS) attack.

The vulnerability exists due the KVM implementation in Linux kernel does not properly perform guest page table updates in some situations. A remote user on the guest operating system can trigger memory corruption and perform a denial of service attack against the host OS.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Linux kernel: All versions

External links
http://seclists.org/oss-sec/2022/q2/22

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Amazon Linux AMI update for kernel
Multiple vulnerabilities in Dell VxRail Appliance components
Red Hat Enterprise Linux 9.0 Extended Update Support update for kpatch-patch
Multiple vulnerabilities in OpenShift Container Platform 4.11
Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions update for kpatch-patch
Red Hat Enterprise Linux for Real Time 9.0 for kernel-rt
Red Hat Enterprise Linux 9.0 Extended Update Support update for kernel
Red Hat Enterprise Linux 8.2 update for kernel
Red Hat Enterprise Linux 8.2 Telecommunications Update Service update for kernel-rt
Red Hat Enterprise Linux 8.6 Extended Update Support update for kpatch-patch