Описание
GNTTABOP_swap_grant_ref in Xen 4.2 through 4.5 does not check the grant table operation version, which allows local guest domains to cause a denial of service (NULL pointer dereference) via a hypercall without a GNTTABOP_setup_table or GNTTABOP_set_version.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 4.5.1-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [4.4.2-0ubuntu0.14.04.2]] |
| precise | released | 4.1.6.1-0ubuntu0.12.04.6 |
| trusty | released | 4.4.2-0ubuntu0.14.04.2 |
| trusty/esm | DNE | trusty was released [4.4.2-0ubuntu0.14.04.2] |
| upstream | needs-triage | |
| utopic | ignored | end of life |
| vivid | released | 4.5.0-1ubuntu4.2 |
| wily | not-affected | 4.5.1-0ubuntu1 |
Показывать по
EPSS
4.9 Medium
CVSS2
Связанные уязвимости
GNTTABOP_swap_grant_ref in Xen 4.2 through 4.5 does not check the grant table operation version, which allows local guest domains to cause a denial of service (NULL pointer dereference) via a hypercall without a GNTTABOP_setup_table or GNTTABOP_set_version.
GNTTABOP_swap_grant_ref in Xen 4.2 through 4.5 does not check the grant table operation version, which allows local guest domains to cause a denial of service (NULL pointer dereference) via a hypercall without a GNTTABOP_setup_table or GNTTABOP_set_version.
GNTTABOP_swap_grant_ref in Xen 4.2 through 4.5 does not check the gran ...
GNTTABOP_swap_grant_ref in Xen 4.2 through 4.5 does not check the grant table operation version, which allows local guest domains to cause a denial of service (NULL pointer dereference) via a hypercall without a GNTTABOP_setup_table or GNTTABOP_set_version.
Уязвимость гипервизора Xen, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.9 Medium
CVSS2