Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-10920

Опубликовано: 05 июл. 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 10
CVSS3: 10

Описание

The grant-table feature in Xen through 4.8.x mishandles a GNTMAP_device_map and GNTMAP_host_map mapping, when followed by only a GNTMAP_host_map unmapping, which allows guest OS users to cause a denial of service (count mismanagement and memory corruption) or obtain privileged host OS access, aka XSA-224 bug 1.

РелизСтатусПримечание
devel

released

4.9.0-0ubuntu1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [4.4.2-0ubuntu0.14.04.12]]
esm-infra/xenial

released

4.6.5-0ubuntu1.2
precise/esm

DNE

trusty

released

4.4.2-0ubuntu0.14.04.12
trusty/esm

DNE

trusty was released [4.4.2-0ubuntu0.14.04.12]
upstream

needs-triage

vivid/ubuntu-core

DNE

xenial

released

4.6.5-0ubuntu1.2
yakkety

released

4.7.2-0ubuntu1.3

Показывать по

Ссылки на источники

EPSS

Процентиль: 78%
0.01132
Низкий

10 Critical

CVSS2

10 Critical

CVSS3

Связанные уязвимости

redhat логотип

CVE-2017-10920

CVSS3: 8.5
redhat
больше 8 лет назад

The grant-table feature in Xen through 4.8.x mishandles a GNTMAP_device_map and GNTMAP_host_map mapping, when followed by only a GNTMAP_host_map unmapping, which allows guest OS users to cause a denial of service (count mismanagement and memory corruption) or obtain privileged host OS access, aka XSA-224 bug 1.

nvd логотип

CVE-2017-10920

CVSS3: 10
nvd
больше 8 лет назад

The grant-table feature in Xen through 4.8.x mishandles a GNTMAP_device_map and GNTMAP_host_map mapping, when followed by only a GNTMAP_host_map unmapping, which allows guest OS users to cause a denial of service (count mismanagement and memory corruption) or obtain privileged host OS access, aka XSA-224 bug 1.

debian логотип

CVE-2017-10920

CVSS3: 10
debian
больше 8 лет назад

The grant-table feature in Xen through 4.8.x mishandles a GNTMAP_devic ...

github логотип

GHSA-4rcm-4m7v-65fw

CVSS3: 10
github
больше 3 лет назад

The grant-table feature in Xen through 4.8.x mishandles a GNTMAP_device_map and GNTMAP_host_map mapping, when followed by only a GNTMAP_host_map unmapping, which allows guest OS users to cause a denial of service (count mismanagement and memory corruption) or obtain privileged host OS access, aka XSA-224 bug 1.

fstec логотип

BDU:2017-01640

fstec
больше 8 лет назад

Уязвимость гипервизора Xen, позволяющая нарушителю вызвать отказ в обслуживании или получить привилегированный доступ к хосту

EPSS

Процентиль: 78%
0.01132
Низкий

10 Critical

CVSS2

10 Critical

CVSS3