CVE-2022-42328: 
Linux Kernel vulnerability analysis and mitigation

CVE-2022-42328 is a vulnerability discovered in the Linux kernel's Xen network backend driver (xen-netback). The issue was introduced by a patch for XSA-392, which could result in a deadlock when trying to free the SKB (socket buffer) of a packet dropped due to the XSA-392 handling. The vulnerability was reported by Yang Yingliang and was disclosed in December 2022 (XEN Advisory).

The vulnerability stems from the improper use of the kfreeskb() function within the Linux netback driver. The issue occurs because kfreeskb() was called from hardware interrupt context or with interrupts being disabled, which is not allowed. The fix involved removing kfreeskb() from the spinlockirqsave() section and using the existing "drop" label in xenvifstartxmit() for dropping the SKB. Additionally, devkfreeskb() was replaced with devkfreeskbany() since xenvifstartxmit() can be called with disabled interrupts (OSS Security).

A malicious guest could exploit this vulnerability to cause a Denial of Service (DoS) condition on the host system via the paravirtualized network interface. The issue affects all systems using the Linux kernel-based network backend xen-netback (XEN Advisory).

Several mitigation options are available: 1) Using another PV network backend (e.g., the qemu based "qnic" backend), 2) Using a dedicated network driver domain per guest, 3) Applying the security patches released for affected systems. Multiple Linux distributions have released fixes, including Ubuntu and Debian. For Ubuntu, fixes were released for various versions including 22.10, 22.04 LTS, 20.04 LTS, and 18.04 LTS (Ubuntu Security, Debian LTS).