Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-26361

IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, "RMRR") for Intel VT-d or Unity Mapping ranges for AMD-Vi. These are typically used for platform tasks such as legacy USB emulation. Since the precise purpose of these regions is unknown, once a device associated with such a region is active, the mappings of these regions need to remain continuouly accessible by the device. This requirement has been violated. Subsequent DMA or interrupts from the device may have unpredictable behaviour, ranging from IOMMU faults to memory corruption.

Published

2022-04-05T13:15:07.977

Last Modified

2024-11-21T06:53:49.810

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:M/Au:N/C:P/I:P/A:P

Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

3.4

Impact Score

6.4

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	xen	xen	-	Yes
Operating System	debian	debian_linux	9.0	Yes
Operating System	fedoraproject	fedora	34	Yes
Operating System	fedoraproject	fedora	35	Yes

References

http://www.openwall.com/lists/oss-security/2022/04/05/3 Mailing List, Patch, Third Party Advisory ([email protected])
http://xenbits.xen.org/xsa/advisory-400.html Patch, Vendor Advisory ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6ETPM2OVZZ6KOS2L7QO7SIW6XWT5OW3F/ ([email protected])
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHFSRVLM2JUCPDC2KGB7ETPQYJLCGBLD/ ([email protected])
https://security.gentoo.org/glsa/202402-07 ([email protected])
https://www.debian.org/security/2022/dsa-5117 Third Party Advisory ([email protected])
https://xenbits.xenproject.org/xsa/advisory-400.txt Vendor Advisory ([email protected])
http://www.openwall.com/lists/oss-security/2022/04/05/3 Mailing List, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://xenbits.xen.org/xsa/advisory-400.html Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6ETPM2OVZZ6KOS2L7QO7SIW6XWT5OW3F/ (af854a3a-2127-422b-91ae-364da2661108)
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHFSRVLM2JUCPDC2KGB7ETPQYJLCGBLD/ (af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/202402-07 (af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2022/dsa-5117 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://xenbits.xenproject.org/xsa/advisory-400.txt Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)