CVE-2022-42330: 
NixOS vulnerability analysis and mitigation

CVE-2022-42330 is a vulnerability in Xen version 4.17 that affects the Xenstore component. When a guest issues a "Soft Reset" operation (e.g., for performing a kexec), the libxl-based Xen toolstack performs an XS_RELEASE Xenstore operation. Due to a bug in xenstored, this operation can result in a crash of xenstored. The vulnerability was publicly disclosed and addressed in January 2023 (Xen Advisory).

The vulnerability specifically affects systems using C xenstored variant in Xen 4.17. The issue occurs during the XS_RELEASE Xenstore operation, which is triggered during guest soft reset operations. Systems using the OCaml variant of xenstored and those running only PV guests (x86 only) with a libxl based toolstack are not affected by this vulnerability (Xen Advisory).

A malicious guest could exploit this vulnerability by repeatedly attempting kexec operations until triggering the xenstored bug. This would result in the inability to perform any further domain administration tasks, such as starting new guests or adding/removing resources to/from existing guests (Xen Advisory).

Two mitigation options are available: 1) Using the OCaml xenstored variant instead of the C variant, or 2) Explicitly configuring guests to NOT perform the "Soft Reset" action by adding 'onsoftreset="reboot"' to the guest's configuration. However, the second option will break kexec functionality in the guest. A patch has been released to resolve the issue permanently (Xen Advisory).