An issue was discovered in Xen 4.5.x through 4.9.x allowing attackers (who control a stub domain kernel or tool stack) to cause a denial of service (host OS crash) because of a missing comparison (of range start to range end) within the DMOP map/unmap implementation.
References
Link | Resource |
---|---|
https://xenbits.xen.org/xsa/advisory-238.html | Mailing List Mitigation Patch Vendor Advisory |
https://security.gentoo.org/glsa/201801-14 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2017-10-18 01:29
Updated : 2018-01-15 18:29
NVD link : CVE-2017-15591
Mitre link : CVE-2017-15591
JSON object : View
CWE
CWE-20
Improper Input Validation
Products Affected
xen
- xen