Xen Information Disclosure Vulnerability: CVE-2017-17046

Description: An issue was discovered in Xen through 4.9.x on the ARM platform allowing guest OS users to obtain sensitive information from DRAM after a reboot, because disjoint blocks, and physical addresses that do not start at zero, are mishandled.

Impact: Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks.

Mitigation: Updates are available. Please see the references or vendor advisory for more information.

Reference URL’s:

Share