CVE-2022-33747

Description

Arm: unbounded memory consumption for 2nd-level page tables Certain actions require e.g. removing pages from a guest's P2M (Physical-to-Machine) mapping. When large pages are in use to map guest pages in the 2nd-stage page tables, such a removal operation may incur a memory allocation (to replace a large mapping with individual smaller ones). These memory allocations are taken from the global memory pool. A malicious guest might be able to cause the global memory pool to be exhausted by manipulating its own P2M mappings.

CVSS Metrics

• v3.1•LOW•Score: 3.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L

EPSS Trends

Current EPSS score: 0.03%• Percentile: 9%

Techniques & Countermeasures

• CWE-404•Improper Resource Shutdown or Release

  The product does not release or incorrectly releases a resource before it is made available for re-use.

Affected Systems

• debian•debian_linux

  11.0

• fedoraproject•fedora

  35 | 36 | 37

References (8)

• https://xenbits.xenproject.org/xsa/advisory-409.txt
• http://xenbits.xen.org/xsa/advisory-409.html
• http://www.openwall.com/lists/oss-security/2022/10/11/5
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWSC77GS5NATI3TT7FMVPULUPXR635XQ/
• https://www.debian.org/security/2022/dsa-5272
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TJOMUNGW6VTK5CZZRLWLVVEOUPEQBRHI/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YZVXG7OOOXCX6VIPEMLFDPIPUTFAYWPE/
• https://security.gentoo.org/glsa/202402-07