GSD-2022-1005170

See a problem?
Please try reporting it to the source first.

Source

https://data.gsd.id/GSD-2022-1005170

Import Source

https://github.com/cloudsecurityalliance/gsd-database/blob/main/2022/1005xxx/GSD-2022-1005170.json

JSON Data

https://api.osv.dev/v1/vulns/GSD-2022-1005170

Published

2022-09-16T23:35:38.526556Z

Modified

2023-02-22T07:35:54.136953Z

Summary

KVM: Unconditionally get a ref to /dev/kvm module when creating a VM

Details

KVM: Unconditionally get a ref to /dev/kvm module when creating a VM

This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.4 by commit 865e08b77c244eed0b80439320e7e8440f61ebce, it was introduced in version v5.18 by commit 5f6de5cbebee925a612856fce6f9182bb3eee0db. For more details please see the references link.

References

Affected packages

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/
Events: Introduced

5f6de5cbebee925a612856fce6f9182bb3eee0db

Limit

865e08b77c244eed0b80439320e7e8440f61ebce

Affected versions

v5.*

v5.17

v5.17-rc4

v5.17-rc5

v5.17-rc6

v5.17-rc7

v5.17-rc8

v5.18

v5.18-rc1

v5.18-rc2

v5.18-rc3

v5.18-rc4

v5.18-rc5

v5.18-rc6

v5.18-rc7

v5.19

v5.19-rc1

v5.19-rc2

v5.19-rc3

v5.19-rc4

v5.19-rc5

v5.19-rc6

v5.19-rc7

v5.19-rc8

v5.19.1

v5.19.2

v5.19.3

Database specific

source

"https://github.com/cloudsecurityalliance/gsd-database/blob/main/2022/1005xxx/GSD-2022-1005170.json"