cvelistv5 - cve-2022-42322

URL	Tags
security@xen.org	http://www.openwall.com/lists/oss-security/2022/11/01/9	Mailing List, Patch, Third Party Advisory
security@xen.org	http://xenbits.xen.org/xsa/advisory-419.html	Patch, Vendor Advisory
security@xen.org	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/
security@xen.org	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/
security@xen.org	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/
security@xen.org	https://security.gentoo.org/glsa/202402-07
security@xen.org	https://www.debian.org/security/2022/dsa-5272	Third Party Advisory
security@xen.org	https://xenbits.xenproject.org/xsa/advisory-419.txt	Patch, Vendor Advisory

▼	Vendor	Product
	Xen	xen

gsd-2022-42322

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Xenstore: Cooperating guests can create arbitrary numbers of nodes T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by Dom0. This will allow two malicious guests working together to create an arbitrary number of Xenstore nodes. This is possible by domain A letting domain B write into domain A's local Xenstore tree. Domain B can then create many nodes and reboot. The nodes created by domain B will now be owned by Dom0. By repeating this process over and over again an arbitrary number of nodes can be created, as Dom0's number of nodes isn't limited by Xenstore quota.

Aliases

CVE-2022-42322

Aliases

CVE-2022-42322

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2022-42322",
    "description": "Xenstore: Cooperating guests can create arbitrary numbers of nodes T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by Dom0. This will allow two malicious guests working together to create an arbitrary number of Xenstore nodes. This is possible by domain A letting domain B write into domain A\u0027s local Xenstore tree. Domain B can then create many nodes and reboot. The nodes created by domain B will now be owned by Dom0. By repeating this process over and over again an arbitrary number of nodes can be created, as Dom0\u0027s number of nodes isn\u0027t limited by Xenstore quota.",
    "id": "GSD-2022-42322",
    "references": [
      "https://www.debian.org/security/2022/dsa-5272",
      "https://www.suse.com/security/cve/CVE-2022-42322.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2022-42322"
      ],
      "details": "Xenstore: Cooperating guests can create arbitrary numbers of nodes T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by Dom0. This will allow two malicious guests working together to create an arbitrary number of Xenstore nodes. This is possible by domain A letting domain B write into domain A\u0027s local Xenstore tree. Domain B can then create many nodes and reboot. The nodes created by domain B will now be owned by Dom0. By repeating this process over and over again an arbitrary number of nodes can be created, as Dom0\u0027s number of nodes isn\u0027t limited by Xenstore quota.",
      "id": "GSD-2022-42322",
      "modified": "2023-12-13T01:19:10.872503Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@xen.org",
        "ID": "CVE-2022-42322",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "xen",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "?",
                          "version_value": "consult Xen advisory XSA-419"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Xen"
            }
          ]
        }
      },
      "configuration": {
        "configuration_data": {
          "description": {
            "description_data": [
              {
                "lang": "eng",
                "value": "All versions of Xen with the fix for XSA-322 are in principle vulnerable.\n\nBoth Xenstore implementations (C and Ocaml) are vulnerable."
              }
            ]
          }
        }
      },
      "credit": {
        "credit_data": {
          "description": {
            "description_data": [
              {
                "lang": "eng",
                "value": "This issue was discovered by J\u00fcrgen Gro\u00df of SUSE."
              }
            ]
          }
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Xenstore: Cooperating guests can create arbitrary numbers of nodes T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by Dom0. This will allow two malicious guests working together to create an arbitrary number of Xenstore nodes. This is possible by domain A letting domain B write into domain A\u0027s local Xenstore tree. Domain B can then create many nodes and reboot. The nodes created by domain B will now be owned by Dom0. By repeating this process over and over again an arbitrary number of nodes can be created, as Dom0\u0027s number of nodes isn\u0027t limited by Xenstore quota."
          }
        ]
      },
      "impact": {
        "impact_data": {
          "description": {
            "description_data": [
              {
                "lang": "eng",
                "value": "Two malicious guests working together can drive xenstored into an\nout of memory situation, resulting in a Denial of Service (DoS) of\nxenstored.\n\nThis inhibits creation of new guests and changing the configuration of\nalready running guests."
              }
            ]
          }
        }
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "unknown"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://xenbits.xenproject.org/xsa/advisory-419.txt",
            "refsource": "MISC",
            "url": "https://xenbits.xenproject.org/xsa/advisory-419.txt"
          },
          {
            "name": "http://xenbits.xen.org/xsa/advisory-419.html",
            "refsource": "CONFIRM",
            "url": "http://xenbits.xen.org/xsa/advisory-419.html"
          },
          {
            "name": "[oss-security] 20221101 Xen Security Advisory 419 v2 (CVE-2022-42322,CVE-2022-42323) - Xenstore: Cooperating guests can create arbitrary numbers of nodes",
            "refsource": "MLIST",
            "url": "http://www.openwall.com/lists/oss-security/2022/11/01/9"
          },
          {
            "name": "DSA-5272",
            "refsource": "DEBIAN",
            "url": "https://www.debian.org/security/2022/dsa-5272"
          },
          {
            "name": "FEDORA-2022-07438e12df",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/"
          },
          {
            "name": "FEDORA-2022-99af00f60e",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/"
          },
          {
            "name": "FEDORA-2022-9f51d13fa3",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/"
          },
          {
            "name": "GLSA-202402-07",
            "refsource": "GENTOO",
            "url": "https://security.gentoo.org/glsa/202402-07"
          }
        ]
      },
      "workaround": {
        "workaround_data": {
          "description": {
            "description_data": [
              {
                "lang": "eng",
                "value": "There is no mitigation available."
              }
            ]
          }
        }
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:xen:xen:-:*:*:*:*:*:*:*",
                    "matchCriteriaId": "BFA1950D-1D9F-4401-AA86-CF3028EFD286",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
                    "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*",
                    "matchCriteriaId": "80E516C0-98A4-4ADE-B69F-66A772E2BAAA",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
                    "matchCriteriaId": "5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*",
                    "matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Xenstore: Cooperating guests can create arbitrary numbers of nodes T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by Dom0. This will allow two malicious guests working together to create an arbitrary number of Xenstore nodes. This is possible by domain A letting domain B write into domain A\u0027s local Xenstore tree. Domain B can then create many nodes and reboot. The nodes created by domain B will now be owned by Dom0. By repeating this process over and over again an arbitrary number of nodes can be created, as Dom0\u0027s number of nodes isn\u0027t limited by Xenstore quota."
          },
          {
            "lang": "es",
            "value": "Xenstore: los invitados que cooperan pueden crear n\u00fameros arbitrarios de nodos. Este registro de informaci\u00f3n CNA se relaciona con m\u00faltiples CVE; el texto explica qu\u00e9 aspectos/vulnerabilidades corresponden a cada CVE.] Desde la correcci\u00f3n de XSA-322, cualquier nodo Xenstore propiedad de un dominio eliminado se modificar\u00e1 para que sea propiedad de Dom0. Esto permitir\u00e1 que dos invitados maliciosos trabajen juntos para crear una cantidad arbitraria de nodos Xenstore. Esto es posible si el dominio A permite que el dominio B escriba en el \u00e1rbol Xenstore local del dominio A. Luego, el dominio B puede crear muchos nodos y reiniciarse. Los nodos creados por el dominio B ahora ser\u00e1n propiedad de Dom0. Al repetir este proceso una y otra vez, se puede crear una cantidad arbitraria de nodos, ya que la cantidad de nodos de Dom0 no est\u00e1 limitada por la cuota de Xenstore."
          }
        ],
        "id": "CVE-2022-42322",
        "lastModified": "2024-02-04T08:15:12.477",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 1.8,
              "impactScore": 3.6,
              "source": "nvd@nist.gov",
              "type": "Primary"
            }
          ]
        },
        "published": "2022-11-01T13:15:11.920",
        "references": [
          {
            "source": "security@xen.org",
            "tags": [
              "Mailing List",
              "Patch",
              "Third Party Advisory"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2022/11/01/9"
          },
          {
            "source": "security@xen.org",
            "tags": [
              "Patch",
              "Vendor Advisory"
            ],
            "url": "http://xenbits.xen.org/xsa/advisory-419.html"
          },
          {
            "source": "security@xen.org",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/"
          },
          {
            "source": "security@xen.org",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/"
          },
          {
            "source": "security@xen.org",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ/"
          },
          {
            "source": "security@xen.org",
            "url": "https://security.gentoo.org/glsa/202402-07"
          },
          {
            "source": "security@xen.org",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://www.debian.org/security/2022/dsa-5272"
          },
          {
            "source": "security@xen.org",
            "tags": [
              "Patch",
              "Vendor Advisory"
            ],
            "url": "https://xenbits.xenproject.org/xsa/advisory-419.txt"
          }
        ],
        "sourceIdentifier": "security@xen.org",
        "vulnStatus": "Modified",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-401"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

wid-sec-w-2022-1939

Vulnerability from csaf_certbund

Published

2022-11-01 23:00

Modified

2024-02-04 23:00

Summary

Xen: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Xen ist ein Virtueller-Maschinen-Monitor (VMM), der Hardware (x86, IA-64, PowerPC) für die darauf laufenden Systeme (Domains) paravirtualisiert. Citrix Hypervisor ist eine Plattform für Desktop-, Server- und Cloud-Virtualisierungsinfrastrukturen.

Angriff

Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xen und Citrix Systems Hypervisor ausnutzen um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern.

Betroffene Betriebssysteme

- UNIX - Linux - Windows - Sonstiges

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Xen ist ein Virtueller-Maschinen-Monitor (VMM), der Hardware (x86, IA-64, PowerPC) f\u00fcr die darauf laufenden Systeme (Domains) paravirtualisiert.\r\nCitrix Hypervisor ist eine Plattform f\u00fcr Desktop-, Server- und Cloud-Virtualisierungsinfrastrukturen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xen und Citrix Systems Hypervisor ausnutzen um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- UNIX\n- Linux\n- Windows\n- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-1939 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1939.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-1939 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1939"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-412.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-413.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-414.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-415.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-416.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-417.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-418.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-419.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-420.html"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-421.html"
      },
      {
        "category": "external",
        "summary": "Citrix Hypervisor Security Bulletin",
        "url": "https://support.citrix.com/article/CTX472851/citrix-hypervisor-security-bulletin-for-cve202242316-cve202242317-cve202242318"
      },
      {
        "category": "external",
        "summary": "Xen Security Advisory vom 2022-11-01",
        "url": "https://xenbits.xen.org/xsa/advisory-326.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5272 vom 2022-11-06",
        "url": "https://lists.debian.org/debian-security-announce/2022/msg00242.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3925-1 vom 2022-11-09",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012859.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3928-1 vom 2022-11-10",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012866.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3947-1 vom 2022-11-11",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012906.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3960-1 vom 2022-11-11",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012903.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:3971-1 vom 2022-11-14",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012910.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:4007-1 vom 2022-11-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012939.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:4051-1 vom 2022-11-17",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012964.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:4241-1 vom 2022-11-28",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-November/013122.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2022:4332-1 vom 2022-12-06",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-December/013191.html"
      },
      {
        "category": "external",
        "summary": "ORACLE OVMSA-2023-0005 vom 2023-03-22",
        "url": "https://oss.oracle.com/pipermail/oraclevm-errata/2023-March/001071.html"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202402-07 vom 2024-02-04",
        "url": "https://security.gentoo.org/glsa/202402-07"
      }
    ],
    "source_lang": "en-US",
    "title": "Xen: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-02-04T23:00:00.000+00:00",
      "generator": {
        "date": "2024-02-15T17:02:23.311+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.0"
        }
      },
      "id": "WID-SEC-W-2022-1939",
      "initial_release_date": "2022-11-01T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-11-01T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2022-11-02T23:00:00.000+00:00",
          "number": "2",
          "summary": "Referenz(en) aufgenommen: FEDORA-2022-1859E9912E, FEDORA-2022-07438E12DF, FEDORA-2022-674B1243C2"
        },
        {
          "date": "2022-11-06T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2022-11-08T23:00:00.000+00:00",
          "number": "4",
          "summary": "Referenz(en) aufgenommen: FEDORA-2022-9F51D13FA3"
        },
        {
          "date": "2022-11-09T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-10T23:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-13T23:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-14T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-16T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-17T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-11-28T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2022-12-06T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2023-03-22T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von ORACLE aufgenommen"
        },
        {
          "date": "2024-02-04T23:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Gentoo aufgenommen"
        }
      ],
      "status": "final",
      "version": "14"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Citrix Systems Hypervisor 8.2 LTSR CU1",
            "product": {
              "name": "Citrix Systems Hypervisor 8.2 LTSR CU1",
              "product_id": "T024873",
              "product_identification_helper": {
                "cpe": "cpe:/o:citrix:hypervisor:8.2_ltsr_cu1"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Citrix Systems"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Open Source Xen \u003e 4.9",
                "product": {
                  "name": "Open Source Xen \u003e 4.9",
                  "product_id": "T014374",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:xen:xen:4.9"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Open Source Xen 4.13.x",
                "product": {
                  "name": "Open Source Xen 4.13.x",
                  "product_id": "T016868",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:xen:xen:4.13.x"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Open Source Xen 4.15.x",
                "product": {
                  "name": "Open Source Xen 4.15.x",
                  "product_id": "T020268",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:xen:xen:4.15.x"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Open Source Xen 4.16.x",
                "product": {
                  "name": "Open Source Xen 4.16.x",
                  "product_id": "T023456",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:xen:xen:4.16.x"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Xen"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-33749",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-33749"
    },
    {
      "cve": "CVE-2022-42309",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42309"
    },
    {
      "cve": "CVE-2022-42310",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42310"
    },
    {
      "cve": "CVE-2022-42311",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42311"
    },
    {
      "cve": "CVE-2022-42312",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42312"
    },
    {
      "cve": "CVE-2022-42313",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42313"
    },
    {
      "cve": "CVE-2022-42314",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42314"
    },
    {
      "cve": "CVE-2022-42315",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42315"
    },
    {
      "cve": "CVE-2022-42316",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42316"
    },
    {
      "cve": "CVE-2022-42317",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42317"
    },
    {
      "cve": "CVE-2022-42318",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42318"
    },
    {
      "cve": "CVE-2022-42319",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42319"
    },
    {
      "cve": "CVE-2022-42320",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42320"
    },
    {
      "cve": "CVE-2022-42321",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42321"
    },
    {
      "cve": "CVE-2022-42322",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42322"
    },
    {
      "cve": "CVE-2022-42323",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42323"
    },
    {
      "cve": "CVE-2022-42324",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42324"
    },
    {
      "cve": "CVE-2022-42325",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42325"
    },
    {
      "cve": "CVE-2022-42326",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42326"
    },
    {
      "cve": "CVE-2022-42327",
      "notes": [
        {
          "category": "description",
          "text": "In Xen und Citrix Systems Hypervisor existieren mehrere Schwachstellen. Ein Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service zu verursachen, Informationen offenzulegen oder seine Rechte zu erweitern. Zur Ausnutzung einiger Schwachstellen ist eine Anmeldung mit erweiterten Rechten erforderlich."
        }
      ],
      "product_status": {
        "known_affected": [
          "T020268",
          "2951",
          "T002207",
          "T023456",
          "T016868",
          "T012167",
          "T024873"
        ]
      },
      "release_date": "2022-11-01T23:00:00Z",
      "title": "CVE-2022-42327"
    }
  ]
}

ghsa-cq56-j359-2484

Vulnerability from github

Published

2022-11-01 19:00

Modified

2022-11-04 19:01

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Xenstore: Cooperating guests can create arbitrary numbers of nodes T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by Dom0. This will allow two malicious guests working together to create an arbitrary number of Xenstore nodes. This is possible by domain A letting domain B write into domain A's local Xenstore tree. Domain B can then create many nodes and reboot. The nodes created by domain B will now be owned by Dom0. By repeating this process over and over again an arbitrary number of nodes can be created, as Dom0's number of nodes isn't limited by Xenstore quota.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-42322"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-401"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2022-11-01T13:15:00Z",
    "severity": "MODERATE"
  },
  "details": "Xenstore: Cooperating guests can create arbitrary numbers of nodes T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by Dom0. This will allow two malicious guests working together to create an arbitrary number of Xenstore nodes. This is possible by domain A letting domain B write into domain A\u0027s local Xenstore tree. Domain B can then create many nodes and reboot. The nodes created by domain B will now be owned by Dom0. By repeating this process over and over again an arbitrary number of nodes can be created, as Dom0\u0027s number of nodes isn\u0027t limited by Xenstore quota.",
  "id": "GHSA-cq56-j359-2484",
  "modified": "2022-11-04T19:01:17Z",
  "published": "2022-11-01T19:00:30Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-42322"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLI2NPNEH7CNJO3VZGQNOI4M4EWLNKPZ"
    },
    {
      "type": "WEB",
      "url": "https://security.gentoo.org/glsa/202402-07"
    },
    {
      "type": "WEB",
      "url": "https://www.debian.org/security/2022/dsa-5272"
    },
    {
      "type": "WEB",
      "url": "https://xenbits.xenproject.org/xsa/advisory-419.txt"
    },
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2022/11/01/9"
    },
    {
      "type": "WEB",
      "url": "http://xenbits.xen.org/xsa/advisory-419.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

cve-2022-42322

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature

Action not permitted

cve-2022-42322

Vulnerability from cvelistv5

gsd-2022-42322

Vulnerability from gsd

wid-sec-w-2022-1939

Vulnerability from csaf_certbund

ghsa-cq56-j359-2484

Vulnerability from github

Tags

Sightings

Nomenclature