4007 – CVE-2022-3344

Bug 4007 - CVE-2022-3344

Summary: CVE-2022-3344

Status:	NEW

Alias:	None

Product:	ANCK 5.10 Dev
Classification:	ANCK
Component:	X86 (show other bugs)	X86
Sub Component:
Version:	5.10.y-13
Hardware:	All Linux

Importance:	P3-Medium S3-normal
Target Milestone:	---
Assignee:	Guanjun
QA Contact:	shuming

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2023-02-09 08:58 UTC by ljubomir
Modified:	2025-05-12 19:32 UTC (History)
CC List:	2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description ljubomir inspur_group

2023-02-09 08:58:49 UTC

Description of problem:

A flaw was found in the KVM's AMD nested virtualization (SVM). A malicious L1 guest could purposely fail to intercept the shutdown of a cooperative nested guest (L2), possibly leading to a page fault and kernel panic in the host (L0).
Version-Release number of selected component (if applicable):

How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:

Comment 1 小龙 admin

2025-05-09 11:04:00 UTC

The PR Link: https://gitee.com/anolis/cloud-kernel/pulls/5233

Comment 2 小龙 admin

2025-05-12 19:32:02 UTC

The PR Link: https://gitee.com/anolis/cloud-kernel/pulls/5251