Unrated severityNVD Advisory· Published Apr 5, 2022· Updated Aug 3, 2024

CVE-2022-26358

Description

IOMMU: RMRR (VT-d) and unity map (AMD-Vi) handling issues T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Certain PCI devices in a system might be assigned Reserved Memory Regions (specified via Reserved Memory Region Reporting, "RMRR") for Intel VT-d or Unity Mapping ranges for AMD-Vi. These are typically used for platform tasks such as legacy USB emulation. Since the precise purpose of these regions is unknown, once a device associated with such a region is active, the mappings of these regions need to remain continuouly accessible by the device. This requirement has been violated. Subsequent DMA or interrupts from the device may have unpredictable behaviour, ranging from IOMMU faults to memory corruption.

Affected products

osv-coords40 versions
pkg:rpm/opensuse/xen&distro=openSUSE%20Leap%2015.3 pkg:rpm/opensuse/xen&distro=openSUSE%20Tumbleweed pkg:rpm/suse/xen&distro=HPE%20Helion%20OpenStack%208 pkg:rpm/suse/xen&distro=SUSE%20Enterprise%20Storage%206 pkg:rpm/suse/xen&distro=SUSE%20Enterprise%20Storage%207 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOS pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSS pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-ESPOS pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Micro%205.0 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Micro%205.1 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Micro%205.2 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP3 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2015%20SP2 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-BCL pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3-LTSS pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4-LTSS pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCL pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-BCL pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5 pkg:rpm/suse/xen&distro=SUSE%20Manager%20Proxy%204.1 pkg:rpm/suse/xen&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.1 pkg:rpm/suse/xen&distro=SUSE%20Manager%20Server%204.1 pkg:rpm/suse/xen&distro=SUSE%20OpenStack%20Cloud%208 pkg:rpm/suse/xen&distro=SUSE%20OpenStack%20Cloud%209 pkg:rpm/suse/xen&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208 pkg:rpm/suse/xen&distro=SUSE%20OpenStack%20Cloud%20Crowbar%209
< 4.14.4_04-150300.3.24.1+ 39 more
- (no CPE)range: < 4.14.4_04-150300.3.24.1
- (no CPE)range: < 4.16.0_08-1.1
- (no CPE)range: < 4.9.4_28-3.103.1
- (no CPE)range: < 4.12.4_24-150100.3.72.1
- (no CPE)range: < 4.13.4_08-150200.3.50.1
- (no CPE)range: < 4.12.4_24-150100.3.72.1
- (no CPE)range: < 4.12.4_24-150100.3.72.1
- (no CPE)range: < 4.13.4_08-150200.3.50.1
- (no CPE)range: < 4.13.4_08-150200.3.50.1
- (no CPE)range: < 4.10.4_34-150000.3.74.1
- (no CPE)range: < 4.10.4_34-150000.3.74.1
- (no CPE)range: < 4.13.4_08-150200.3.50.1
- (no CPE)range: < 4.14.4_04-150300.3.24.1
- (no CPE)range: < 4.14.4_04-150300.3.24.1
- (no CPE)range: < 4.14.4_04-150300.3.24.1
- (no CPE)range: < 4.14.4_04-150300.3.24.1
- (no CPE)range: < 4.13.4_08-150200.3.50.1
- (no CPE)range: < 4.7.6_22-43.88.1
- (no CPE)range: < 4.9.4_28-3.103.1
- (no CPE)range: < 4.9.4_28-3.103.1
- (no CPE)range: < 4.11.4_28-2.73.1
- (no CPE)range: < 4.12.4_22-3.66.1
- (no CPE)range: < 4.12.4_24-150100.3.72.1
- (no CPE)range: < 4.12.4_24-150100.3.72.1
- (no CPE)range: < 4.13.4_08-150200.3.50.1
- (no CPE)range: < 4.13.4_08-150200.3.50.1
- (no CPE)range: < 4.9.4_28-3.103.1
- (no CPE)range: < 4.11.4_28-2.73.1
- (no CPE)range: < 4.12.4_22-3.66.1
- (no CPE)range: < 4.10.4_34-150000.3.74.1
- (no CPE)range: < 4.12.4_24-150100.3.72.1
- (no CPE)range: < 4.13.4_08-150200.3.50.1
- (no CPE)range: < 4.12.4_22-3.66.1
- (no CPE)range: < 4.13.4_08-150200.3.50.1
- (no CPE)range: < 4.13.4_08-150200.3.50.1
- (no CPE)range: < 4.13.4_08-150200.3.50.1
- (no CPE)range: < 4.9.4_28-3.103.1
- (no CPE)range: < 4.11.4_28-2.73.1
- (no CPE)range: < 4.9.4_28-3.103.1
- (no CPE)range: < 4.11.4_28-2.73.1
Xen/Xenv5
Range: consult Xen advisory XSA-400

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6ETPM2OVZZ6KOS2L7QO7SIW6XWT5OW3F/mitrevendor-advisory
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHFSRVLM2JUCPDC2KGB7ETPQYJLCGBLD/mitrevendor-advisory
security.gentoo.org/glsa/202402-07mitrevendor-advisory
www.debian.org/security/2022/dsa-5117mitrevendor-advisory
www.openwall.com/lists/oss-security/2022/04/05/3mitremailing-list
xenbits.xen.org/xsa/advisory-400.htmlmitre
xenbits.xenproject.org/xsa/advisory-400.txtmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000