Wiz
Vulnerability DatabaseCVE-2022-50228

CVE-2022-50228
Linux Kernel vulnerability analysis and mitigation

Overview

CVE-2022-50228 affects the Linux kernel's KVM (Kernel-based Virtual Machine) subsystem, specifically related to interrupt injection in AMD SVM (Secure Virtual Machine). The vulnerability was discovered when a BUG condition occurred if userspace injects an interrupt with GIF=0 (NVD, Wiz).

Technical details

The vulnerability manifests when userspace attempts to inject an interrupt while the Global Interrupt Flag (GIF) is cleared. This condition triggers a kernel BUG in the svm_inject_irq function at arch/x86/kvm/svm/svm.c:3386. The issue occurs because the code would BUG/WARN on interrupt injection due to GIF being cleared, even though it's possible for userspace to force this situation via KVM_SET_VCPU_EVENTS (NVD).

Impact

When triggered, this vulnerability causes a kernel panic through the BUG condition, leading to a system crash. This can result in denial of service for the host system running KVM with AMD SVM virtualization (NVD).

Mitigation and workarounds

The vulnerability has been resolved in the Linux kernel by modifying the behavior to not BUG/WARN on interrupt injection when GIF is cleared, as this is a legitimate condition that can be triggered by userspace (NVD).

Additional resources

SourceThis report was generated using AI

Related Linux Kernel vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2026-31404N/AN/A
  • Linux KernelLinux Kernel
  • kernel-debug-devel-matched
NoYesApr 03, 2026
CVE-2026-31403N/AN/A
  • Linux KernelLinux Kernel
  • kernel
NoYesApr 03, 2026
CVE-2026-31402N/AN/A
  • Linux KernelLinux Kernel
  • kernel-rt-modules-extra
NoYesApr 03, 2026
CVE-2026-31401N/AN/A
  • Linux KernelLinux Kernel
  • python3-perf
NoYesApr 03, 2026
CVE-2026-31400N/AN/A
  • Linux KernelLinux Kernel
  • kernel-zfcpdump-devel-matched
NoYesApr 03, 2026

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo