Lucene search

PRIOn knowledge basePRION:CVE-2022-1789

HistoryJun 02, 2022 - 2:15 p.m.

Null pointer dereference

2022-06-0214:15:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.9%

JSON

With shadow paging enabled, the INVPCID instruction results in a call to kvm_mmu_invpcid_gva. If INVPCID is executed with CR0.PG=0, the invlpg callback is not set and the result is a NULL pointer dereference.

CPENameOperatorVersion
debian_linuxeq11.0
fedoraeq34
fedoraeq35
fedoraeq36
linux_kernellt5.8
enterprise_linuxeq9.0

Name	Operator	Version
debian_linux	eq	11.0
fedora	eq	34
fedora	eq	35
fedora	eq	36
linux_kernel	lt	5.8
enterprise_linux	eq	9.0

References

bugzilla.redhat.com/show_bug.cgi?id=1832397

francozappa.github.io/about-bias/

kb.cert.org/vuls/id/647177/

lists.fedoraproject.org/archives/list/[email protected]/message/H6JP355XFVAB33X4BNO3ERVTURFYEDB7/

lists.fedoraproject.org/archives/list/[email protected]/message/IBUOQTNTQ4ZCXHOCNKYIL2ZUIAZ675RD/

lists.fedoraproject.org/archives/list/[email protected]/message/KCEAPIVPRTJHKPF2A2HVF5XHD5XJT3MN/

www.debian.org/security/2022/dsa-5161