CVE-2022-50227
- Source
- https://cve.org/CVERecord?id=CVE-2022-50227
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50227.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-50227
- Downstream
- Published
- 2025-06-18T11:03:59.885Z
- Modified
- 2026-03-11T09:54:45.806055Z
- Summary
- KVM: x86/xen: Initialize Xen timer only once
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
KVM: x86/xen: Initialize Xen timer only once
Add a check for existing xen timers before initializing a new one.
Currently kvmxeninittimer() is called on every KVMXENVCPUATTRTYPETIMER, which is causing the following ODEBUG crash when vcpu->arch.xen.timer is already set.
ODEBUG: init active (active state 0) object type: hrtimer hint: xentimercallbac0 RIP: 0010:debugprintobject+0x16e/0x250 lib/debugobjects.c:502 Call Trace: _debugobjectinit debughrtimerinit debuginit hrtimerinit kvmxeninittimer kvmxenvcpusetattr kvmarchvcpuioctl kvmvcpuioctl vfsioctl
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50227.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/9a9b5771e930f408c3419799000f76a9abaf2278
- https://git.kernel.org/stable/c/af735db31285fa699384c649be72a9f32ecbb665
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50227.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-50227
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced536395260582be7443b0b35b0bbb89ffe3947f62Fixed9a9b5771e930f408c3419799000f76a9abaf2278Fixedaf735db31285fa699384c649be72a9f32ecbb665
Affected versions
v5.*
v5.17
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v5.19.1
Database specific
vanir_signatures
[
{
"signature_type": "Function",
"signature_version": "v1",
"target": {
"file": "arch/x86/kvm/xen.c",
"function": "kvm_xen_vcpu_set_attr"
},
"id": "CVE-2022-50227-15682096",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@af735db31285fa699384c649be72a9f32ecbb665",
"digest": {
"function_hash": "334448388018895477923148161510218324449",
"length": 5173.0
}
},
{
"signature_type": "Line",
"signature_version": "v1",
"target": {
"file": "arch/x86/kvm/xen.c"
},
"id": "CVE-2022-50227-7d3e3dc1",
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@af735db31285fa699384c649be72a9f32ecbb665",
"digest": {
"line_hashes": [
"304832671344299983688768872278973424206",
"329104595591519148452607042389380520998",
"10722711034171336562387614460802435045",
"301200193194119927726457539090771509991"
],
"threshold": 0.9
}
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50227.json"