CVE-2022-26365

First published: Tue Jul 05 2022(Updated: )

Linux disk/nic frontends data leaks T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Linux Block and Network PV device frontends don't zero memory regions before sharing them with the backend (CVE-2022-26365, CVE-2022-33740). Additionally the granularity of the grant table doesn't allow sharing less than a 4K page, leading to unrelated data residing in the same 4K page as data shared with a backend being accessible by such backend (CVE-2022-33741, CVE-2022-33742).

Credit: security@xen.org security@xen.org security@xen.org

Affected Software	Affected Version	How to fix
Linux Linux kernel	>=2.6.13<4.9.322
Linux Linux kernel	>=4.14<4.14.287
Linux Linux kernel	>=4.19<4.19.251
Linux Linux kernel	>=5.4<5.4.204
Linux Linux kernel	>=5.10<5.10.129
Linux Linux kernel	>=5.15<5.15.53
Linux Linux kernel	>=5.18<5.18.10
Linux Linux kernel	=2.6.12-rc2
Linux Linux kernel	=2.6.12-rc3
Linux Linux kernel	=2.6.12-rc4
Linux Linux kernel	=2.6.12-rc5
Linux Linux kernel	=2.6.12-rc6
Linux Linux kernel	=5.19-rc1
Linux Linux kernel	=5.19-rc2
Linux Linux kernel	=5.19-rc3
Linux Linux kernel	=5.19-rc4
Linux Linux kernel	=5.19-rc5
Xen Xen
Debian Debian Linux	=10.0
Debian Debian Linux	=11.0
Fedoraproject Fedora	=35
Fedoraproject Fedora	=36
ubuntu/linux	<4.15.0-194.205	4.15.0-194.205
ubuntu/linux	<5.4.0-128.144	5.4.0-128.144
ubuntu/linux	<5.15.0-48.54	5.15.0-48.54
ubuntu/linux	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux	<4.4.0-233.267	4.4.0-233.267
ubuntu/linux-aws	<4.15.0-1142.154	4.15.0-1142.154
ubuntu/linux-aws	<5.4.0-1086.93	5.4.0-1086.93
ubuntu/linux-aws	<5.15.0-1020.24	5.15.0-1020.24
ubuntu/linux-aws	<4.4.0-1112.118	4.4.0-1112.118
ubuntu/linux-aws	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-aws	<4.4.0-1148.163	4.4.0-1148.163
ubuntu/linux-aws-5.0	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-aws-5.11	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-aws-5.13	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-aws-5.15	<5.15.0-1020.24~20.04.1	5.15.0-1020.24~20.04.1
ubuntu/linux-aws-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-aws-5.3	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-aws-5.4	<5.4.0-1086.93~18.04.1	5.4.0-1086.93~18.04.1
ubuntu/linux-aws-5.4	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-aws-5.8	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-aws-6.5	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-aws-fips	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-aws-hwe	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-aws-hwe	<4.15.0-1142.154~16.04.1	4.15.0-1142.154~16.04.1
ubuntu/linux-azure	<5.4.0-1094.100	5.4.0-1094.100
ubuntu/linux-azure	<5.15.0-1020.25	5.15.0-1020.25
ubuntu/linux-azure	<4.15.0-1153.168~14.04.1	4.15.0-1153.168~14.04.1
ubuntu/linux-azure	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-azure	<4.15.0-1153.168~16.04.1	4.15.0-1153.168~16.04.1
ubuntu/linux-azure-4.15	<4.15.0-1153.168	4.15.0-1153.168
ubuntu/linux-azure-4.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-azure-5.11	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-azure-5.13	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-azure-5.15	<5.15.0-1020.25~20.04.1	5.15.0-1020.25~20.04.1
ubuntu/linux-azure-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-azure-5.3	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-azure-5.4	<5.4.0-1094.100~18.04.1	5.4.0-1094.100~18.04.1
ubuntu/linux-azure-5.4	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-azure-6.5	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-azure-edge	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-azure-fde	<5.4.0-1094.100	5.4.0-1094.100
ubuntu/linux-azure-fde	<5.15.0-1024.30.1	5.15.0-1024.30.1
ubuntu/linux-azure-fde	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-azure-fde-5.15	<5.15.0-1020.25~20.04.1.1	5.15.0-1020.25~20.04.1.1
ubuntu/linux-azure-fde-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-azure-fips	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-bluefield	<5.4.0-1047.52	5.4.0-1047.52
ubuntu/linux-bluefield	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-dell300x	<4.15.0-1054.59	4.15.0-1054.59
ubuntu/linux-dell300x	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-fips	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gcp	<5.4.0-1090.98	5.4.0-1090.98
ubuntu/linux-gcp	<5.15.0-1018.24	5.15.0-1018.24
ubuntu/linux-gcp	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gcp	<4.15.0-1137.153~16.04.1	4.15.0-1137.153~16.04.1
ubuntu/linux-gcp-4.15	<4.15.0-1137.153	4.15.0-1137.153
ubuntu/linux-gcp-4.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gcp-5.11	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gcp-5.13	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gcp-5.15	<5.15.0-1018.24~20.04.1	5.15.0-1018.24~20.04.1
ubuntu/linux-gcp-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gcp-5.3	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gcp-5.4	<5.4.0-1092.101~18.04.1	5.4.0-1092.101~18.04.1
ubuntu/linux-gcp-5.8	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gcp-6.5	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gcp-fips	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gke	<5.4.0-1084.90	5.4.0-1084.90
ubuntu/linux-gke	<5.15.0-1016.19	5.15.0-1016.19
ubuntu/linux-gke	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gke-4.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gke-5.0	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gke-5.15	<5.15.0-1016.19~20.04.1	5.15.0-1016.19~20.04.1
ubuntu/linux-gke-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gke-5.3	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gke-5.4	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gkeop	<5.4.0-1054.57	5.4.0-1054.57
ubuntu/linux-gkeop	<5.15.0-1003.5	5.15.0-1003.5
ubuntu/linux-gkeop	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gkeop-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-gkeop-5.4	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-hwe	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-hwe	<4.15.0-194.205~16.04.1	4.15.0-194.205~16.04.1
ubuntu/linux-hwe-5.11	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-hwe-5.13	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-hwe-5.15	<5.15.0-48.54~20.04.1	5.15.0-48.54~20.04.1
ubuntu/linux-hwe-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-hwe-5.4	<5.4.0-128.144~18.04.1	5.4.0-128.144~18.04.1
ubuntu/linux-hwe-5.4	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-hwe-5.8	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-hwe-6.5	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-hwe-edge	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-ibm	<5.4.0-1034.38	5.4.0-1034.38
ubuntu/linux-ibm	<5.15.0-1015.17	5.15.0-1015.17
ubuntu/linux-ibm	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-ibm-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-ibm-5.4	<5.4.0-1034.38~18.04.1	5.4.0-1034.38~18.04.1
ubuntu/linux-ibm-5.4	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-intel	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-intel-5.13	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-intel-iotg	<5.15.0-1016.21	5.15.0-1016.21
ubuntu/linux-intel-iotg	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-intel-iotg-5.15	<5.15.0-1016.21~20.04.1	5.15.0-1016.21~20.04.1
ubuntu/linux-intel-iotg-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-iot	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-kvm	<4.15.0-1128.133	4.15.0-1128.133
ubuntu/linux-kvm	<5.4.0-1076.81	5.4.0-1076.81
ubuntu/linux-kvm	<5.15.0-1018.22	5.15.0-1018.22
ubuntu/linux-kvm	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-kvm	<4.4.0-1113.123	4.4.0-1113.123
ubuntu/linux-laptop	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-lowlatency	<5.15.0-48.54	5.15.0-48.54
ubuntu/linux-lowlatency	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-lowlatency-hwe-5.15	<5.15.0-48.54~20.04.1	5.15.0-48.54~20.04.1
ubuntu/linux-lowlatency-hwe-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-lowlatency-hwe-6.5	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-lts-xenial	<4.4.0-233.267~14.04.1	4.4.0-233.267~14.04.1
ubuntu/linux-lts-xenial	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-nvidia	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-nvidia-6.5	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oem	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oem-5.10	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oem-5.13	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oem-5.14	<5.14.0-1055.62	5.14.0-1055.62
ubuntu/linux-oem-5.17	<5.17.0-1024.25	5.17.0-1024.25
ubuntu/linux-oem-5.17	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oem-5.6	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oem-6.0	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oem-6.1	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oem-6.5	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oem-6.8	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oem-osp1	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oracle	<4.15.0-1107.118	4.15.0-1107.118
ubuntu/linux-oracle	<5.4.0-1084.92	5.4.0-1084.92
ubuntu/linux-oracle	<5.15.0-1018.23	5.15.0-1018.23
ubuntu/linux-oracle	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oracle	<4.15.0-1107.118~16.04.1	4.15.0-1107.118~16.04.1
ubuntu/linux-oracle-5.0	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oracle-5.11	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oracle-5.13	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oracle-5.15	<5.15.0-1018.23~20.04.1	5.15.0-1018.23~20.04.1
ubuntu/linux-oracle-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oracle-5.3	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-oracle-5.4	<5.4.0-1084.92~18.04.1	5.4.0-1084.92~18.04.1
ubuntu/linux-oracle-6.5	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-raspi	<5.4.0-1071.81	5.4.0-1071.81
ubuntu/linux-raspi	<5.15.0-1015.17	5.15.0-1015.17
ubuntu/linux-raspi	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-raspi-5.4	<5.4.0-1071.81~18.04.1	5.4.0-1071.81~18.04.1
ubuntu/linux-raspi-5.4	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-raspi2	<4.15.0-1120.128	4.15.0-1120.128
ubuntu/linux-raspi2	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-raspi2-5.3	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-riscv	<5.15.0-1019.22	5.15.0-1019.22
ubuntu/linux-riscv	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-riscv-5.11	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-riscv-5.15	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-riscv-5.8	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-riscv-6.5	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-snapdragon	<4.15.0-1138.148	4.15.0-1138.148
ubuntu/linux-snapdragon	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-starfive	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-starfive-6.5	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
ubuntu/linux-xilinx-zynqmp	<5.19~<5.4.204<5.15.53	5.19~ 5.4.204 5.15.53
debian/linux		5.10.218-1 5.10.221-1 6.1.94-1 6.1.99-1 6.9.12-1 6.10.3-1
debian/xen	<=4.14.6-1<=4.14.5+94-ge49571868d-1	4.17.3+10-g091466ba55-1~deb12u1 4.17.3+36-g54dacb5c02-1

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

collector/nvd-api
collector/nvd-index
agent/type
collector/launchpad-cve
source/Launchpad
agent/first-publish-date
agent/remedy
agent/weakness
agent/author
agent/severity
agent/description
collector/nvd-cve
source/NVD
agent/software-canonical-lookup
agent/references
collector/usn-cve
source/Ubuntu
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/tags
agent/event
collector/security-tracker-debian
source/Debian
vendor/linux
canonical/linux linux kernel
version/linux linux kernel/2.6.13
version/linux linux kernel/4.14
version/linux linux kernel/4.19
version/linux linux kernel/5.4
version/linux linux kernel/5.10
version/linux linux kernel/5.15
version/linux linux kernel/5.18
version/linux linux kernel/2.6.12-rc2
version/linux linux kernel/2.6.12-rc3
version/linux linux kernel/2.6.12-rc4
version/linux linux kernel/2.6.12-rc5
version/linux linux kernel/2.6.12-rc6
version/linux linux kernel/5.19-rc1
version/linux linux kernel/5.19-rc2
version/linux linux kernel/5.19-rc3
version/linux linux kernel/5.19-rc4
version/linux linux kernel/5.19-rc5
vendor/xen
canonical/xen xen
vendor/debian
canonical/debian debian linux
version/debian debian linux/10.0
version/debian debian linux/11.0
vendor/fedoraproject
canonical/fedoraproject fedora
version/fedoraproject fedora/35
version/fedoraproject fedora/36
package-manager/ubuntu
package-manager/debian

CVE-2022-26365

Remedy

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

Company

Resources

Contact