CVE Vulnerability

CVE-2022-2196

A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn't need retpolines or IBPB after running L2 due to KVM (L0) advertising eIBRS support to L1. An attacker at L2 with code execution can execute code on an indirect branch on the host machine. We recommend upgrading to Kernel 6.2 or past commit 2e7eab81425a

8.8 /10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 2 / Impact : 6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope CHANGED

References
Link Resource
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=2e7eab81425ad6c875f2ed47c0ce01e78afc38a5 Mailing List Patch
https://kernel.dance/#2e7eab81425a Patch Third Party Advisory
Configurations

Configuration 1

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Information

Published : 2023-01-09 11:15

Updated : 2023-01-13 02:12

NVD link : CVE-2022-2196

Mitre link : CVE-2022-2196

Products Affected

Linux

Linux Kernel

CWE
CWE-1188

Insecure Default Initialization of Resource