CVE-2022-3707
Description
A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers VGA card system resource overload, causing a fail in the intel_gvt_dma_map_guest_page function. This issue could allow a local user to crash the system.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2023-2148.html
Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2023-2458.html
Vendor advisory: alma — https://bugzilla.redhat.com/2177371
Vendor advisory: alma — https://bugzilla.redhat.com/2165741
Vendor advisory: alma — https://bugzilla.redhat.com/2147364
Vendor advisory: alma — https://bugzilla.redhat.com/2139610
Vendor advisory: alma — https://bugzilla.redhat.com/2134380
Vendor advisory: alma — https://bugzilla.redhat.com/2133490
Vendor advisory: alma — https://bugzilla.redhat.com/2107924
Vendor advisory: alma — https://bugzilla.redhat.com/2106830
Vendor advisory: alma — https://bugzilla.redhat.com/2089701
Vendor advisory: alma — https://bugzilla.redhat.com/2073091
Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2023-2736.html
Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2023:2736
Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2023-2951.html
Vendor advisory: alma — https://bugzilla.redhat.com/2180936
Vendor advisory: alma — https://bugzilla.redhat.com/2176192
Vendor advisory: alma — https://bugzilla.redhat.com/2168297
Vendor advisory: alma — https://bugzilla.redhat.com/2168246
Vendor advisory: alma — https://bugzilla.redhat.com/2165721
Vendor advisory: alma — https://bugzilla.redhat.com/2162120
Vendor advisory: alma — https://bugzilla.redhat.com/2160023
Vendor advisory: alma — https://bugzilla.redhat.com/2154235
Vendor advisory: alma — https://bugzilla.redhat.com/2154171
Vendor advisory: alma — https://bugzilla.redhat.com/2151270
Vendor advisory: alma — https://bugzilla.redhat.com/2150999
Vendor advisory: alma — https://bugzilla.redhat.com/2150979
Vendor advisory: alma — https://bugzilla.redhat.com/2150960
Vendor advisory: alma — https://bugzilla.redhat.com/2150947
Vendor advisory: alma — https://bugzilla.redhat.com/2144720
Vendor advisory: alma — https://bugzilla.redhat.com/2143943
Vendor advisory: alma — https://bugzilla.redhat.com/2143893
Vendor advisory: alma — https://bugzilla.redhat.com/2137979
Vendor advisory: alma — https://bugzilla.redhat.com/2134528
Vendor advisory: alma — https://bugzilla.redhat.com/2134517
Vendor advisory: alma — https://bugzilla.redhat.com/2134506
Vendor advisory: alma — https://bugzilla.redhat.com/2134451
Vendor advisory: alma — https://bugzilla.redhat.com/2134377
Vendor advisory: alma — https://bugzilla.redhat.com/2133483
Vendor advisory: alma — https://bugzilla.redhat.com/2130141
Vendor advisory: alma — https://bugzilla.redhat.com/2127985
Vendor advisory: alma — https://bugzilla.redhat.com/2124788
Vendor advisory: alma — https://bugzilla.redhat.com/2123056
Vendor advisory: alma — https://bugzilla.redhat.com/2122960
Vendor advisory: alma — https://bugzilla.redhat.com/2122228
Vendor advisory: alma — https://bugzilla.redhat.com/2114937
Vendor advisory: alma — https://bugzilla.redhat.com/2108696
Vendor advisory: alma — https://bugzilla.redhat.com/2108691
Vendor advisory: alma — https://bugzilla.redhat.com/2090723
Vendor advisory: alma — https://bugzilla.redhat.com/2085300
Vendor advisory: alma — https://bugzilla.redhat.com/2084125
Vendor advisory: alma — https://bugzilla.redhat.com/2078466
Vendor advisory: alma — https://bugzilla.redhat.com/2061703
Vendor advisory: alma — https://bugzilla.redhat.com/2055499
Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2023:2951
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2022-3707
Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2022-3707.html
Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2023:2458
Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2023:2148
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| rhel | 9 | fixed | |
| sles | affected | | |
| debian | bookworm | fixed | 6.1.7-1 |
| debian | bullseye | fixed | 5.10.178-1 |
| debian | forky | fixed | 6.1.7-1 |
| debian | sid | fixed | 6.1.7-1 |
| debian | trixie | fixed | 6.1.7-1 |
| almalinux | 8 | fixed | kernel-doc-4.18.0-477.10.1.el8_8.noarch.rpm |
| almalinux | 9 | fixed | kernel-doc-5.14.0-284.11.1.el9_2.noarch.rpm |
References
- https://access.redhat.com/errata/RHSA-2023:2148
- https://access.redhat.com/errata/RHSA-2023:2458
- https://www.suse.com/security/cve/CVE-2022-3707.html
- https://security-tracker.debian.org/tracker/CVE-2022-3707
- https://access.redhat.com/errata/RHSA-2023:2951
- https://bugzilla.redhat.com/2055499
- https://bugzilla.redhat.com/2061703
- https://bugzilla.redhat.com/2078466
- https://bugzilla.redhat.com/2084125
- https://bugzilla.redhat.com/2085300
- https://bugzilla.redhat.com/2090723
- https://bugzilla.redhat.com/2108691
- https://bugzilla.redhat.com/2108696
- https://bugzilla.redhat.com/2114937
- https://bugzilla.redhat.com/2122228
- https://bugzilla.redhat.com/2122960
- https://bugzilla.redhat.com/2123056
- https://bugzilla.redhat.com/2124788
- https://bugzilla.redhat.com/2127985
- https://bugzilla.redhat.com/2130141
- https://bugzilla.redhat.com/2133483
- https://bugzilla.redhat.com/2134377
- https://bugzilla.redhat.com/2134451
- https://bugzilla.redhat.com/2134506
- https://bugzilla.redhat.com/2134517
Verify integrity in audit chain (admin only). AS-IS.