Description

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: smm: number of GPRs in the SMRAM image depends on the image format On 64 bit host, if the guest doesn't have X86_FEATURE_LM, KVM will access 16 gprs to 32-bit smram image, causing out-ouf-bound ram access. On 32 bit host, the rsm_load_state_64/enter_smm_save_state_64 is compiled out, thus access overflow can't happen.

INFO

Published Date :

2025-05-01T14:10:29.804Z

Last Modified :

2025-05-04T08:47:44.094Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49883 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49883.

URL Resource
https://git.kernel.org/stable/c/696db303e54f7352623d9f640e6c51d8fa9d5588 cve-icon cve-icon
https://git.kernel.org/stable/c/a7ebfbea0f52550d7cdf12c38f3f5eaa7b2b6494 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025050155-CVE-2022-49883-ba54@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49883 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49883 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact