vulnerability

Debian: CVE-2022-33745: xen -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:S/C:C/I:C/A:C)	Jul 26, 2022	Nov 8, 2022	Mar 30, 2026

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:C/A:C)

Published

Jul 26, 2022

Added

Nov 8, 2022

Modified

Mar 30, 2026

Description

insufficient TLB flush for x86 PV guests in shadow mode For migration as well as to work around kernels unaware of L1TF (see XSA-273), PV guests may be run in shadow paging mode. To address XSA-401, code was moved inside a function in Xen. This code movement missed a variable changing meaning / value between old and new code positions. The now wrong use of the variable did lead to a wrong TLB flush condition, omitting flushes where such are necessary.

Solution

debian-upgrade-xen

References

CVE-2022-33745
https://attackerkb.com/topics/CVE-2022-33745
DEBIAN-DSA-5272
DEBIAN-DSA-5272-1
EUVD-EUVD-2022-36784
https://euvd.enisa.europa.eu/vulnerability/EUVD-2022-36784

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report