race in VT-d domain ID cleanup Xen domain IDs are up to 15 bits wide. VT-d hardware may allow for only less than 15 bits to hold a domain ID associating a physical device with a particular domain. Therefore internally Xen domain IDs are mapped to the smaller value range. The cleaning up of the housekeeping structures has a race, allowing for VT-d domain IDs to be leaked and flushes to be bypassed.
References
Configurations
History
04 Feb 2024, 08:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
07 Nov 2023, 03:44
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2022-04-05 13:15
Updated : 2024-02-28 19:09
NVD link : CVE-2022-26357
Mitre link : CVE-2022-26357
CVE.ORG link : CVE-2022-26357
JSON object : View
Products Affected
fedoraproject
- fedora
debian
- debian_linux
xen
- xen
CWE
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')