CVE-2022-0171

Name	CVE-2022-0171
Description	A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a non-root (host) user-level application to crash the host kernel by creating a confidential guest VM instance in AMD CPU that supports Secure Encrypted Virtualization (SEV).
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DLA-3173-1, DSA-5257-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
linux (PTS)	bullseye	5.10.223-1	fixed
	bullseye (security)	5.10.234-1	fixed
	bookworm	6.1.129-1	fixed
	bookworm (security)	6.1.135-1	fixed
	trixie	6.12.25-1	fixed
	sid	6.12.27-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Origin
linux	source	stretch	(not affected)
linux	source	buster	(not affected)
linux	source	bullseye	5.10.149-1	DSA-5257-1
linux	source	(unstable)	5.18.2-1
linux-5.10	source	buster	5.10.149-2~deb10u1	DLA-3173-1

Notes

[buster] - linux <not-affected> (Vulnerable code not present)
[stretch] - linux <not-affected> (Vulnerable code not present)
https://bugzilla.redhat.com/show_bug.cgi?id=2038940