CVE-2017-10923

Опубликовано: 05 июл. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 6.5

Описание

Xen through 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service (hypervisor crash), aka XSA-225.

Релиз	Статус	Примечание
devel	released	4.9.0-0ubuntu1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [code not present]]
esm-infra/xenial	released	4.6.5-0ubuntu1.2
precise/esm	DNE
trusty	not-affected	code not present
trusty/esm	DNE	trusty was not-affected [code not present]
upstream	needs-triage
vivid/ubuntu-core	DNE
xenial	released	4.6.5-0ubuntu1.2
yakkety	released	4.7.2-0ubuntu1.3

Показывать по

Ссылки на источники

EPSS

Процентиль: 73%

0.00779

Низкий

5 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-10923

CVSS3: 7.7

redhat

больше 8 лет назад

Xen through 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service (hypervisor crash), aka XSA-225.

CVE-2017-10923

CVSS3: 6.5

nvd

больше 8 лет назад

Xen through 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service (hypervisor crash), aka XSA-225.

CVE-2017-10923

CVSS3: 6.5

debian

больше 8 лет назад

Xen through 4.8.x does not validate a vCPU array index upon the sendin ...

GHSA-83mw-xpgw-63qr

CVSS3: 6.5

github

больше 3 лет назад

Xen through 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service (hypervisor crash), aka XSA-225.

EPSS

Процентиль: 73%

0.00779

Низкий

5 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2017-10923

Описание

Пакет xen

Ссылки на источники

Связанные уязвимости