CVE-2022-39189

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-39189

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-39189.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-39189

Aliases

A-245869446
ASB-A-245869446

Downstream

DEBIAN-CVE-2022-39189

DLA-3623-1

DSA-5480-1

OESA-2022-1925

OESA-2022-1926

OESA-2022-1927

RHSA-2023:2148

RHSA-2023:2458

RHSA-2023:2736

RHSA-2023:2951

RHSA-2024:0724

SUSE-SU-2022:3585-1

SUSE-SU-2022:3601-1

SUSE-SU-2022:3605-1

SUSE-SU-2022:3606-1

SUSE-SU-2022:3607-1

SUSE-SU-2022:3628-1

SUSE-SU-2022:3648-1

SUSE-SU-2022:3657-1

SUSE-SU-2022:3844-1

SUSE-SU-2022:3897-1

SUSE-SU-2022:3929-1

SUSE-SU-2022:4038-1

SUSE-SU-2022:4053-1

SUSE-SU-2022:4589-1

SUSE-SU-2022:4614-1

SUSE-SU-2022:4617-1

UBUNTU-CVE-2022-39189

USN-5667-1

USN-5683-1

USN-5703-1

Related

Published

2022-09-02T05:15:07Z

Modified

2025-08-09T19:01:26Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered the x86 KVM subsystem in the Linux kernel before 5.18.17. Unprivileged guest users can compromise the guest kernel because TLB flush operations are mishandled in certain KVMVCPUPREEMPTED situations.

References

Affected packages