Xen Security Advisory CVE-2017-10920 CVE-2017-10921 CVE-2017-10922 [grant table operations mishandle reference counts]

by CIRT Team

Description: The grant-table feature in Xen through 4.8.x does not ensure sufficient type counts for a GNTMAP_device_map and GNTMAP_host_map mapping, which allows guest OS users to cause a denial of service (count mismanagement and memory corruption) or obtain privileged host OS access, aka XSA-224 bug 2.

Impact: For the worst issue, a PV guest could gain a writeable mapping of its own pagetable, allowing it to escalate its privileges to that of the host.

Mitigation: Updates are available. Please check specific vendor advisory for more information.

Reference URL’s:

• https://xenbits.xen.org/xsa/advisory-224.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10921

CIRT Team

Recommended Posts

Active Exploitation of Critical F5 BIG – IP Vulnerability (CVE–2023-46747) Uncovered in Bangladesh

06 Nov 2024 - Security Advisories & Alerts

Emerging Threat_Stealer Malware (Lumma C2) Campaign with fake CAPTCHA pages

08 Oct 2024 - Security Advisories & Alerts

Detection of Fog Ransomware Footprint in Cyber Space of Bangladesh

12 Sep 2024 - Security Advisories & Alerts