An attacker could exploit this vulnerability to corrupt the data stored in the DRAM through DMA and thus potentially to deny service to legitimate memory requests from a memory-intensive application. An attacker could exploit this vulnerability to corrupt the data stored in the DRAM through DMA and thus potentially to deny service to legitimate memory requests from a memory-intensive application. An unprivileged user could exploit this vulnerability to potentially deny service to memory-intensive applications. An unprivileged user could exploit this vulnerability to potentially deny service to memory-intensive applications. At the time of this writing, there are no known public exploits. At the time of this writing, there are no known public exploits. Mitigations As of kernel 5.5, the Intel NVMExpressLegacy driver has been hardened against DMA attacks. As of kernel 5.2, the NvmExpressLegacy driver has been hardened against DMA attacks. Updates for the NVMExpressLegacy driver are available. Updates for the NvmExpressLegacy driver are available. Users are advised to monitor the progress of these updates. Users are advised to monitor the progress of these updates.

Timeline

Published on: 11/15/2022 00:15:00 UTC
Last modified on: 11/18/2022 15:51:00 UTC

References