CVE-2022-42309 Information

Description

Xenstore: Guests can crash xenstored Due to a bug in the fix of XSA-115 a malicious guest can cause xenstored to use a wrong pointer during node creation in an error path resulting in a crash of xenstored or a memory corruption in xenstored causing further damage. Entering the error path can be controlled by the guest e.g. by exceeding the quota value of maximum nodes per domain.

Reference

https://xenbits.xenproject.org/xsa/advisory-414.txt http://xenbits.xen.org/xsa/advisory-414.html http://www.openwall.com/lists/oss-security/2022/11/01/4