CVE-2023-34326

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-34326

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-34326.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-34326

Downstream

ALPINE-CVE-2023-34326

DEBIAN-CVE-2023-34326

SUSE-SU-2023:4054-1

SUSE-SU-2023:4055-1

SUSE-SU-2023:4174-1

SUSE-SU-2023:4183-1

SUSE-SU-2023:4184-1

SUSE-SU-2023:4185-1

SUSE-SU-2023:4475-1

SUSE-SU-2023:4476-1

UBUNTU-CVE-2023-34326

openSUSE-SU-2024:13442-1

Related

Published

2024-01-05T17:15:08Z

Modified

2025-08-09T20:01:25Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

The caching invalidation guidelines from the AMD-Vi specification (48882—Rev 3.07-PUB—Oct 2022) is incorrect on some hardware, as devices will malfunction (see stale DMA mappings) if some fields of the DTE are updated but the IOMMU TLB is not flushed.

Such stale DMA mappings can point to memory ranges not owned by the guest, thus allowing access to unindented memory regions.

References

https://xenbits.xenproject.org/xsa/advisory-442.html

Affected packages