CVE-2022-33747 Information

Description

Arm: unbounded memory consumption for 2nd-level page tables Certain actions require e.g. removing pages from a guest’s P2M (Physical-to-Machine) mapping. When large pages are in use to map guest pages in the 2nd-stage page tables such a removal operation may incur a memory allocation (to replace a large mapping with individual smaller ones). These memory allocations are taken from the global memory pool. A malicious guest might be able to cause the global memory pool to be exhausted by manipulating its own P2M mappings.

Reference

https://xenbits.xenproject.org/xsa/advisory-409.txt http://xenbits.xen.org/xsa/advisory-409.html http://www.openwall.com/lists/oss-security/2022/10/11/5