CVE-2022-33744

Name	CVE-2022-33744
Description	Arm guests can cause Dom0 DoS via PV devices When mapping pages of guests on Arm, dom0 is using an rbtree to keep track of the foreign mappings. Updating of that rbtree is not always done completely with the related lock held, resulting in a small race window, which can be used by unprivileged guests via PV devices to cause inconsistencies of the rbtree. These inconsistencies can lead to Denial of Service (DoS) of dom0, e.g. by causing crashes or the inability to perform further mappings of other guests' memory pages.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DLA-3131-1, DSA-5191-1

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
linux (PTS)	buster	4.19.249-2	vulnerable
	buster (security)	4.19.304-1	fixed
	bullseye	5.10.209-2	fixed
	bullseye (security)	5.10.205-2	fixed
	bookworm	6.1.76-1	fixed
	bookworm (security)	6.1.85-1	fixed
	trixie	6.6.15-2	fixed
	sid	6.7.9-2	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Origin
linux	source	buster	4.19.260-1	DLA-3131-1
linux	source	bullseye	5.10.127-2	DSA-5191-1
linux	source	(unstable)	5.18.14-1

https://xenbits.xen.org/xsa/advisory-406.html