vulnerability

Debian: CVE-2022-33745: xen -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:S/C:C/I:C/A:C)	Jul 26, 2022	Nov 8, 2022	Jan 28, 2025

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:C/A:C)

Published

Jul 26, 2022

Added

Nov 8, 2022

Modified

Jan 28, 2025

Description

insufficient TLB flush for x86 PV guests in shadow mode For migration as well as to work around kernels unaware of L1TF (see XSA-273), PV guests may be run in shadow paging mode. To address XSA-401, code was moved inside a function in Xen. This code movement missed a variable changing meaning / value between old and new code positions. The now wrong use of the variable did lead to a wrong TLB flush condition, omitting flushes where such are necessary.

Solution

debian-upgrade-xen

References

CVE-2022-33745
https://attackerkb.com/topics/CVE-2022-33745
DEBIAN-DSA-5272
DEBIAN-DSA-5272-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today