CVE-2022-23523: linux-loader reading beyond EOF could lead to infinite loop
The linux-loader crate used the offsets and sizes provided in the ELF headers to determine the offsets to read from. If those offsets pointed beyond the end of the file this could lead to an infinite loop. Virtual Machine Monitors using the linux-loader crate could enter an infinite loop if the ELF header of the kernel they are loading was modified in a malicious manner.
References
- github.com/advisories/GHSA-52h2-m2cf-9jh6
- github.com/rust-vmm/linux-loader
- github.com/rust-vmm/linux-loader/commit/a44f152da4f38c538ed492b1efa8515be2047db2
- github.com/rust-vmm/linux-loader/pull/125
- github.com/rust-vmm/linux-loader/security/advisories/GHSA-52h2-m2cf-9jh6
- nvd.nist.gov/vuln/detail/CVE-2022-23523
Detect and mitigate CVE-2022-23523 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →