CVE-2022-49054

Summary

In the Linux kernel, the following vulnerability has been resolved:

Drivers: hv: vmbus: Deactivate sysctl_record_panic_msg by default in isolated guests

hv_panic_page might contain guest-sensitive information, do not dump it over to Hyper-V by default in isolated guests.

While at it, update some comments in hyperv_{panic,die}_event().

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxa6c76bb08dc7f7ff2b1c381002eb6c7211746182 < 1b576e81d31b56b248316b8ff816b1cc5c4407c7affected
LinuxLinuxa6c76bb08dc7f7ff2b1c381002eb6c7211746182 < 6230bc50d6d21cae4c084766623d0a6d17958721affected
LinuxLinuxa6c76bb08dc7f7ff2b1c381002eb6c7211746182 < 9f8b577f7b43b2170628d6c537252785dcc2dceaaffected
LinuxLinux5.12affected
LinuxLinux0 < 5.12unaffected
LinuxLinux5.15.35 <= 5.15.*unaffected
LinuxLinux5.17.4 <= 5.17.*unaffected
LinuxLinux5.18 <= *unaffected

Weaknesses

References