CVE-2022-26356

Name: CVE-2022-26356
Creator: NVD / NIST
Published: 2022-04-05T13:15:07.727+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 5.6/10EPSS 0.23%

Last modified Jun 17, 2026

CVE-2022-26356 is a medium-severity vulnerability rated 5.6/10 on the CVSS scale. Racy interactions between dirty vram tracking and paging log dirty hypercalls Activation of log dirty mode done by XEN_DMOP_track_dirty_vram (was named HVMOP_track_dirty_vram before Xen 4.9) is racy with ongoing log dirty hypercalls. A suitably timed call to XEN_DMOP_track_dirty_vram can enable log dirty while another CPU is still in the process of tearing down the structures related to a previously enabled log dirty mode (XEN_DOMCTL_SHADOW_OP_OFF). EPSS estimates a 0.23% chance of exploitation in the next 30 days.

Description

Racy interactions between dirty vram tracking and paging log dirty hypercalls Activation of log dirty mode done by XEN_DMOP_track_dirty_vram (was named HVMOP_track_dirty_vram before Xen 4.9) is racy with ongoing log dirty hypercalls. A suitably timed call to XEN_DMOP_track_dirty_vram can enable log dirty while another CPU is still in the process of tearing down the structures related to a previously enabled log dirty mode (XEN_DOMCTL_SHADOW_OP_OFF). This is due to lack of mutually exclusive locking between both operations and can lead to entries being added in already freed slots, resulting in a memory leak.

Metrics

CVSS 3.1

5.6/10

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

EPSS Probability

0.23%

13.9th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-667

Affected Software

Vendor	Product	Versions
Xen	Xen	>= 4.0.0, < 4.12.0
Xen	Xen	>= 4.13.0, < 4.14.0
Xen	Xen	>= 4.15.0, < 4.16.0
Debian	Debian Linux	11.0
Fedoraproject	Fedora	34
Fedoraproject	Fedora	35

References

http://www.openwall.com/lists/oss-security/2022/04/05/1Mailing List, Patch, Third Party Advisory
http://xenbits.xen.org/xsa/advisory-397.htmlPatch, Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6ETPM2OVZZ6KOS2L7QO7SIW6XWT5OW3F/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHFSRVLM2JUCPDC2KGB7ETPQYJLCGBLD/
https://security.gentoo.org/glsa/202402-07
https://www.debian.org/security/2022/dsa-5117Third Party Advisory
https://xenbits.xenproject.org/xsa/advisory-397.txtThird Party Advisory
http://www.openwall.com/lists/oss-security/2022/04/05/1Mailing List, Patch, Third Party Advisory
http://xenbits.xen.org/xsa/advisory-397.htmlPatch, Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6ETPM2OVZZ6KOS2L7QO7SIW6XWT5OW3F/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHFSRVLM2JUCPDC2KGB7ETPQYJLCGBLD/
https://security.gentoo.org/glsa/202402-07
https://www.debian.org/security/2022/dsa-5117Third Party Advisory
https://xenbits.xenproject.org/xsa/advisory-397.txtThird Party Advisory

Timeline

Published: Apr 5, 2022
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2022-26356?

How severe is CVE-2022-26356?

CVE-2022-26356 has a CVSS score of 5.6/10 (MEDIUM severity). The EPSS model estimates a 0.23% probability of exploitation in the next 30 days.

How do I fix CVE-2022-26356?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-26356?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST