Xen Security Advisory CVE-2017-10923

by CIRT Team

Description: Xen through 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service (hypervisor crash), aka XSA-225.

Impact:  A guest may cause a hypervisor crash, resulting in a Denial of Service (DoS).

Mitigation: Updates are available. Please check specific vendor advisory for more information.

Reference URL’s:

• https://xenbits.xen.org/xsa/advisory-225.html
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10923

CIRT Team

Recommended Posts

Critical Vulnerability (CVE-2018-19410) Exposes 600 PRTG Instances in Bangladesh

18 Feb 2025 - Security Advisories & Alerts

Emerging Phishing Attack on Cyber Space of Bangladesh

12 Jan 2025 - Security Advisories & Alerts

Active Exploitation of Critical F5 BIG – IP Vulnerability (CVE–2023-46747) Uncovered in Bangladesh

06 Nov 2024 - Security Advisories & Alerts