cvelistv5 - cve-2022-42320

URL	Tags
security@xen.org	http://www.openwall.com/lists/oss-security/2022/11/01/7	Mailing List, Third Party Advisory
security@xen.org	http://xenbits.xen.org/xsa/advisory-417.html	Patch, Vendor Advisory
security@xen.org	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/
security@xen.org	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/
security@xen.org	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/
security@xen.org	https://security.gentoo.org/glsa/202402-07
security@xen.org	https://www.debian.org/security/2022/dsa-5272	Third Party Advisory
security@xen.org	https://xenbits.xenproject.org/xsa/advisory-417.txt	Patch, Vendor Advisory

▼	Vendor	Product
	Xen	xen

gsd-2022-42320

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid. When a domain is gone, there might be Xenstore nodes left with access rights containing the domid of the removed domain. This is normally no problem, as those access right entries will be corrected when such a node is written later. There is a small time window when a new domain is created, where the access rights of a past domain with the same domid as the new one will be regarded to be still valid, leading to the new domain being able to get access to a node which was meant to be accessible by the removed domain. For this to happen another domain needs to write the node before the newly created domain is being introduced to Xenstore by dom0.

Aliases

CVE-2022-42320

Aliases

CVE-2022-42320

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2022-42320",
    "description": "Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid. When a domain is gone, there might be Xenstore nodes left with access rights containing the domid of the removed domain. This is normally no problem, as those access right entries will be corrected when such a node is written later. There is a small time window when a new domain is created, where the access rights of a past domain with the same domid as the new one will be regarded to be still valid, leading to the new domain being able to get access to a node which was meant to be accessible by the removed domain. For this to happen another domain needs to write the node before the newly created domain is being introduced to Xenstore by dom0.",
    "id": "GSD-2022-42320",
    "references": [
      "https://www.debian.org/security/2022/dsa-5272",
      "https://www.suse.com/security/cve/CVE-2022-42320.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2022-42320"
      ],
      "details": "Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid. When a domain is gone, there might be Xenstore nodes left with access rights containing the domid of the removed domain. This is normally no problem, as those access right entries will be corrected when such a node is written later. There is a small time window when a new domain is created, where the access rights of a past domain with the same domid as the new one will be regarded to be still valid, leading to the new domain being able to get access to a node which was meant to be accessible by the removed domain. For this to happen another domain needs to write the node before the newly created domain is being introduced to Xenstore by dom0.",
      "id": "GSD-2022-42320",
      "modified": "2023-12-13T01:19:10.499879Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@xen.org",
        "ID": "CVE-2022-42320",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "xen",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "?",
                          "version_value": "consult Xen advisory XSA-417"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Xen"
            }
          ]
        }
      },
      "configuration": {
        "configuration_data": {
          "description": {
            "description_data": [
              {
                "lang": "eng",
                "value": "All versions of Xen are in principle vulnerable.\n\nOnly systems running the C variant of Xenstore (xenstored or xenstore-\nstubdom) are vulnerable.\n\nSystems using the Ocaml variant of Xenstore (oxenstored) are not vulnerable.\n\nVulnerable systems are only those running software where one domain is\ngranted access to another\u0027s xenstore nodes, without complete cleanup\nof those nodes on domain destruction.  No such software is enabled in\ndefault configurations of upstream Xen.\n\nTherefore upstream Xen, without additional management software (in\nhost or guest(s)), is not vulnerable in the default (host and guest)\nconfiguration."
              }
            ]
          }
        }
      },
      "credit": {
        "credit_data": {
          "description": {
            "description_data": [
              {
                "lang": "eng",
                "value": "This issue was discovered by J\u00fcrgen Gro\u00df of SUSE."
              }
            ]
          }
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid. When a domain is gone, there might be Xenstore nodes left with access rights containing the domid of the removed domain. This is normally no problem, as those access right entries will be corrected when such a node is written later. There is a small time window when a new domain is created, where the access rights of a past domain with the same domid as the new one will be regarded to be still valid, leading to the new domain being able to get access to a node which was meant to be accessible by the removed domain. For this to happen another domain needs to write the node before the newly created domain is being introduced to Xenstore by dom0."
          }
        ]
      },
      "impact": {
        "impact_data": {
          "description": {
            "description_data": [
              {
                "lang": "eng",
                "value": "In some circumstances, it might be possible for a new guest domain to\naccess resources belonging to a previous domain.  The impact would\ndepend on the software in use and the configuration, but might include\nany of denial of service, information leak, or privilege escalation."
              }
            ]
          }
        }
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "unknown"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://xenbits.xenproject.org/xsa/advisory-417.txt",
            "refsource": "MISC",
            "url": "https://xenbits.xenproject.org/xsa/advisory-417.txt"
          },
          {
            "name": "http://xenbits.xen.org/xsa/advisory-417.html",
            "refsource": "CONFIRM",
            "url": "http://xenbits.xen.org/xsa/advisory-417.html"
          },
          {
            "name": "[oss-security] 20221101 Xen Security Advisory 417 v2 (CVE-2022-42320) - Xenstore: Guests can get access to Xenstore nodes of deleted domains",
            "refsource": "MLIST",
            "url": "http://www.openwall.com/lists/oss-security/2022/11/01/7"
          },
          {
            "name": "DSA-5272",
            "refsource": "DEBIAN",
            "url": "https://www.debian.org/security/2022/dsa-5272"
          },
          {
            "name": "FEDORA-2022-07438e12df",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/"
          },
          {
            "name": "FEDORA-2022-99af00f60e",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/"
          },
          {
            "name": "FEDORA-2022-9f51d13fa3",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/"
          },
          {
            "name": "GLSA-202402-07",
            "refsource": "GENTOO",
            "url": "https://security.gentoo.org/glsa/202402-07"
          }
        ]
      },
      "workaround": {
        "workaround_data": {
          "description": {
            "description_data": [
              {
                "lang": "eng",
                "value": "Running oxenstored instead of xenstored will avoid the vulnerability."
              }
            ]
          }
        }
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:xen:xen:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "BFA1950D-1D9F-4401-AA86-CF3028EFD286",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
                    "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
                    "matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
                    "matchCriteriaId": "5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*",
                    "matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid. When a domain is gone, there might be Xenstore nodes left with access rights containing the domid of the removed domain. This is normally no problem, as those access right entries will be corrected when such a node is written later. There is a small time window when a new domain is created, where the access rights of a past domain with the same domid as the new one will be regarded to be still valid, leading to the new domain being able to get access to a node which was meant to be accessible by the removed domain. For this to happen another domain needs to write the node before the newly created domain is being introduced to Xenstore by dom0."
          },
          {
            "lang": "es",
            "value": "Xenstore: los invitados pueden obtener acceso a los nodos de Xenstore de los dominios eliminados. Los derechos de acceso de los nodos de Xenstore son por domid. Cuando un dominio desaparece, es posible que queden nodos de Xenstore con derechos de acceso que contengan el dominio del dominio eliminado. Normalmente, esto no supone ning\u00fan problema, ya que esas entradas de derechos de acceso se corregir\u00e1n cuando dicho nodo se escriba m\u00e1s adelante. Hay una peque\u00f1a ventana de tiempo cuando se crea un nuevo dominio, donde los derechos de acceso de un dominio anterior con el mismo dominio que el nuevo se considerar\u00e1n todav\u00eda v\u00e1lidos, lo que permitir\u00e1 que el nuevo dominio pueda obtener acceso a un nodo. que estaba destinado a ser accesible por el dominio eliminado. Para que esto suceda, otro dominio debe escribir el nodo antes de que dom0 introduzca el dominio reci\u00e9n creado en Xenstore."
          }
        ],
        "id": "CVE-2022-42320",
        "lastModified": "2024-02-04T08:15:12.300",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.0,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 1.0,
              "impactScore": 5.9,
              "source": "nvd@nist.gov",
              "type": "Primary"
            }
          ]
        },
        "published": "2022-11-01T13:15:11.817",
        "references": [
          {
            "source": "security@xen.org",
            "tags": [
              "Mailing List",
              "Third Party Advisory"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/11/01/7"
          },
          {
            "source": "security@xen.org",
            "tags": [
              "Patch",
              "Vendor Advisory"
            ],
            "url": "http://xenbits.xen.org/xsa/advisory-417.html"
          },
          {
            "source": "security@xen.org",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/"
          },
          {
            "source": "security@xen.org",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/"
          },
          {
            "source": "security@xen.org",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/"
          },
          {
            "source": "security@xen.org",
            "url": "https://security.gentoo.org/glsa/202402-07"
          },
          {
            "source": "security@xen.org",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://www.debian.org/security/2022/dsa-5272"
          },
          {
            "source": "security@xen.org",
            "tags": [
              "Patch",
              "Vendor Advisory"
            ],
            "url": "https://xenbits.xenproject.org/xsa/advisory-417.txt"
          }
        ],
        "sourceIdentifier": "security@xen.org",
        "vulnStatus": "Modified",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-459"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

wid-sec-w-2022-1939

Vulnerability from csaf_certbund

Published

2022-11-01 23:00

Modified

2024-02-04 23:00

Summary

Xen: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Xen ist ein Virtueller-Maschinen-Monitor (VMM), der Hardware (x86, IA-64, PowerPC) für die darauf laufenden Systeme (Domains) paravirtualisiert. Citrix Hypervisor ist eine Plattform für Desktop-, Server- und Cloud-Virtualisierungsinfrastrukturen.

Angriff

Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xen und Citrix Systems Hypervisor ausnutzen um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern.

Betroffene Betriebssysteme

- UNIX - Linux - Windows - Sonstiges

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Xen ist ein Virtueller-Maschinen-Monitor (VMM), der Hardware (x86, IA-64, PowerPC) f\u00fcr die darauf laufenden Systeme (Domains) paravirtualisiert.\r\nCitrix Hypervisor ist eine Plattform f\u00fcr Desktop-, Server- und Cloud-Virtualisierungsinfrastrukturen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xen und Citrix Systems Hypervisor ausnutzen um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows\n- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-1939 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1939.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-1939 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1939"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-412.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-413.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-414.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-415.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-416.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-417.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-418.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-419.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-420.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-421.html"
      },
      {
        "category": "external",
        "summary": "Citrix Hypervisor Security Bulletin",
        "url": "https://support.citrix.com/article/CTX472851/citrix-hypervisor-security-bulletin-for-cve202242316-cve202242317-cve202242318"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-326.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5272 vom 2022-11-06",
        "url": "https://lists.debian.org/debian-security-announce/2022/msg00242.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3925-1 vom 2022-11-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012859.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3928-1 vom 2022-11-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012866.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3947-1 vom 2022-11-11",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012906.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3960-1 vom 2022-11-11",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012903.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3971-1 vom 2022-11-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012910.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:4007-1 vom 2022-11-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012939.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:4051-1 vom 2022-11-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012964.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:4241-1 vom 2022-11-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/013122.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:4332-1 vom 2022-12-06",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-December/013191.html"
      },
      {
        "category": "external",
        "summary": "ORACLE OVMSA-2023-0005 vom 2023-03-22",
        "url": "https://oss.oracle.com/pipermail/oraclevm-errata/2023-March/001071.html"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202402-07 vom 2024-02-04",
        "url": "https://security.gentoo.org/glsa/202402-07"
      }
    ],
    "source_lang": "en-US",
    "title": "Xen: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-02-04T23:00:00.000+00:00",
      "generator": {
        "date": "2024-02-15T17:02:23.311+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.0"
        }
      },
      "id": "WID-SEC-W-2022-1939",
      "initial_release_date": "2022-11-01T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-11-01T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2022-11-02T23:00:00.000+00:00",
          "number": "2",
          "summary": "Referenz(en) aufgenommen: FEDORA-2022-1859E9912E, FEDORA-2022-07438E12DF, FEDORA-2022-674B1243C2"
        },
        {
          "date": "2022-11-06T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2022-11-08T23:00:00.000+00:00",
          "number": "4",
          "summary": "Referenz(en) aufgenommen: FEDORA-2022-9F51D13FA3"
        },
        {
          "date": "2022-11-09T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-10T23:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-13T23:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-14T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-16T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-17T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-28T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-12-06T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2023-03-22T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von ORACLE aufgenommen"
        },
        {
          "date": "2024-02-04T23:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Gentoo aufgenommen"
        }
      ],
      "status": "final",
      "version": "14"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Citrix Systems Hypervisor 8.2 LTSR CU1",
            "product": {
              "name": "Citrix Systems Hypervisor 8.2 LTSR CU1",
              "product_id": "T024873",
              "product_identification_helper": {
                "cpe": "cpe:/o:citrix:hypervisor:8.2_ltsr_cu1"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Citrix Systems"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Open Source Xen \u003e 4.9",
                "product": {
                  "name": "Open Source Xen \u003e 4.9",
                  "product_id": "T014374",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:xen:xen:4.9"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Open Source Xen 4.13.x",
                "product": {
                  "name": "Open Source Xen 4.13.x",
                  "product_id": "T016868",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:xen:xen:4.13.x"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Open Source Xen 4.15.x",
                "product": {
                  "name": "Open Source Xen 4.15.x",
                  "product_id": "T020268",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:xen:xen:4.15.x"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Open Source Xen 4.16.x",
                "product": {
                  "name": "Open Source Xen 4.16.x",
                  "product_id": "T023456",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:xen:xen:4.16.x"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Xen"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-33749",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-33749"
    },
    {
      "cve": "CVE-2022-42309",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42309"
    },
    {
      "cve": "CVE-2022-42310",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42310"
    },
    {
      "cve": "CVE-2022-42311",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42311"
    },
    {
      "cve": "CVE-2022-42312",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42312"
    },
    {
      "cve": "CVE-2022-42313",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42313"
    },
    {
      "cve": "CVE-2022-42314",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42314"
    },
    {
      "cve": "CVE-2022-42315",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42315"
    },
    {
      "cve": "CVE-2022-42316",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42316"
    },
    {
      "cve": "CVE-2022-42317",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42317"
    },
    {
      "cve": "CVE-2022-42318",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42318"
    },
    {
      "cve": "CVE-2022-42319",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42319"
    },
    {
      "cve": "CVE-2022-42320",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42320"
    },
    {
      "cve": "CVE-2022-42321",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42321"
    },
    {
      "cve": "CVE-2022-42322",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42322"
    },
    {
      "cve": "CVE-2022-42323",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42323"
    },
    {
      "cve": "CVE-2022-42324",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42324"
    },
    {
      "cve": "CVE-2022-42325",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42325"
    },
    {
      "cve": "CVE-2022-42326",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42326"
    },
    {
      "cve": "CVE-2022-42327",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42327"
    }
  ]
}

ghsa-p263-3p34-m82m

Vulnerability from github

Published

2022-11-01 19:00

Modified

2022-11-03 19:00

Severity ?

7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid. When a domain is gone, there might be Xenstore nodes left with access rights containing the domid of the removed domain. This is normally no problem, as those access right entries will be corrected when such a node is written later. There is a small time window when a new domain is created, where the access rights of a past domain with the same domid as the new one will be regarded to be still valid, leading to the new domain being able to get access to a node which was meant to be accessible by the removed domain. For this to happen another domain needs to write the node before the newly created domain is being introduced to Xenstore by dom0.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-42320"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-459"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2022-11-01T13:15:00Z",
    "severity": "HIGH"
  },
  "details": "Xenstore: Guests can get access to Xenstore nodes of deleted domains Access rights of Xenstore nodes are per domid. When a domain is gone, there might be Xenstore nodes left with access rights containing the domid of the removed domain. This is normally no problem, as those access right entries will be corrected when such a node is written later. There is a small time window when a new domain is created, where the access rights of a past domain with the same domid as the new one will be regarded to be still valid, leading to the new domain being able to get access to a node which was meant to be accessible by the removed domain. For this to happen another domain needs to write the node before the newly created domain is being introduced to Xenstore by dom0.",
  "id": "GHSA-p263-3p34-m82m",
  "modified": "2022-11-03T19:00:27Z",
  "published": "2022-11-01T19:00:30Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42320"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ"
    },
    {
      "type": "WEB",
      "url": "https://security.gentoo.org/glsa/202402-07"
    },
    {
      "type": "WEB",
      "url": "https://www.debian.org/security/2022/dsa-5272"
    },
    {
      "type": "WEB",
      "url": "https://xenbits.xenproject.org/xsa/advisory-417.txt"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2022/11/01/7"
    },
    {
      "type": "WEB",
      "url": "http://xenbits.xen.org/xsa/advisory-417.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

cve-2022-42320

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature

Action not permitted

cve-2022-42320

Vulnerability from cvelistv5

gsd-2022-42320

Vulnerability from gsd

wid-sec-w-2022-1939

Vulnerability from csaf_certbund

ghsa-p263-3p34-m82m

Vulnerability from github

Tags

Sightings

Nomenclature