Xen ‘xen/common/grant_table.c’ Denial of Service Vulnerability (CVE-2018-7541)

by CIRT Team

Description: An issue was discovered in Xen through 4.10.x allowing guest OS users to cause a denial of service (hypervisor crash) or gain privileges by triggering a grant-table transition from v2 to v1.

Impact: An attacker can exploit this issue to crash the host, denying service to legitimate users.

Xen 4.0 and later are vulnerable.

Mitigation: Updates are available. Please see the references or vendor advisory for more information.

Reference URL’s:

• http://seclists.org/oss-sec/2018/q1/193
• http://xenbits.xenproject.org/xsa/advisory-255.html
• http://xenbits.xenproject.org/xsa/advisory-255.txt
• https://support.citrix.com/article/CTX232655
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7541
• https://www.securityfocus.com/bid/103177/info

CIRT Team

Recommended Posts

Active Exploitation of Critical F5 BIG – IP Vulnerability (CVE–2023-46747) Uncovered in Bangladesh

06 Nov 2024 - Security Advisories & Alerts

Emerging Threat_Stealer Malware (Lumma C2) Campaign with fake CAPTCHA pages

08 Oct 2024 - Security Advisories & Alerts

Detection of Fog Ransomware Footprint in Cyber Space of Bangladesh

12 Sep 2024 - Security Advisories & Alerts