CVE-2022-50720

EPSS 0.02%
Veröffentlicht 24.12.2025 12:22:43
Zuletzt bearbeitet 29.12.2025 15:58:34
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

x86/apic: Don't disable x2APIC if locked

The APIC supports two modes, legacy APIC (or xAPIC), and Extended APIC
(or x2APIC).  X2APIC mode is mostly compatible with legacy APIC, but
it disables the memory-mapped APIC interface in favor of one that uses
MSRs.  The APIC mode is controlled by the EXT bit in the APIC MSR.

The MMIO/xAPIC interface has some problems, most notably the APIC LEAK
[1].  This bug allows an attacker to use the APIC MMIO interface to
extract data from the SGX enclave.

Introduce support for a new feature that will allow the BIOS to lock
the APIC in x2APIC mode.  If the APIC is locked in x2APIC mode and the
kernel tries to disable the APIC or revert to legacy APIC mode a GP
fault will occur.

Introduce support for a new MSR (IA32_XAPIC_DISABLE_STATUS) and handle
the new locked mode when the LEGACY_XAPIC_DISABLED bit is set by
preventing the kernel from trying to disable the x2APIC.

On platforms with the IA32_XAPIC_DISABLE_STATUS MSR, if SGX or TDX are
enabled the LEGACY_XAPIC_DISABLED will be set by the BIOS.  If
legacy APIC is required, then it SGX and TDX need to be disabled in the
BIOS.

[1]: https://aepicleak.com/aepicleak.pdf

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 6

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 05785ba834f23272f9d23427ae4a80ac505a5296

Version fb209bd891645bb87b9618b724f0b4928e0df3de

Status affected

Version < dd1241e00addbf0b95f6cd6ce32152692820657e

Version fb209bd891645bb87b9618b724f0b4928e0df3de

Status affected

Version < b8d1d163604bd1e600b062fb00de5dc42baa355f

Version fb209bd891645bb87b9618b724f0b4928e0df3de

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 3.3

Status affected

Version < 3.3

Version 0

Status unaffected

Version <= 5.19.*

Version 5.19.17

Status unaffected

Version <= 6.0.*

Version 6.0.3

Status unaffected

Version <= *

Version 6.1

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.058

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/05785ba834f23272f9d23427ae4a80ac505a5296

https://git.kernel.org/stable/c/dd1241e00addbf0b95f6cd6ce32152692820657e

https://git.kernel.org/stable/c/b8d1d163604bd1e600b062fb00de5dc42baa355f

https://nvd.nist.gov/vuln/detail/CVE-2022-50720

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-50720

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-50720

EUVD