CVE-2022-42328
CVSS v3.1
5.5 (Medium)
EPSS
0.06 % (28th)
Affected Products
2
Advisories
36
Guests can trigger deadlock in Linux netback driver T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] The patch for XSA-392 introduced another issue which might result in a deadlock when trying to free the SKB of a packet dropped due to the XSA-392 handling (CVE-2022-42328). Additionally when dropping packages for other reasons the same deadlock could occur in case of netpoll being active for the interface the xen-netback driver is connected to (CVE-2022-42329).
- CVE Status
- PUBLISHED
- CNA
- Xen Project
- Published Date
-
2022-12-07 01:15:11
(21 months ago) - Updated Date
-
2023-01-10 19:40:35
(20 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...