What the vulnerability does

01Description

A NULL pointer dereference issue was found in KVM when releasing a vCPU with dirty ring support enabled. This flaw allows an unprivileged local attacker on the host to issue specific ioctl calls, causing a kernel oops condition that results in a denial of service.

Key dates

02Disclosure timeline

August 31, 2022 CVE published
August 2, 2024 Record updated