An issue was discovered in Xen through 4.9.x on the ARM platform allowing guest OS users to obtain sensitive information from DRAM after a reboot, because disjoint blocks, and physical addresses that do not start at zero, are mishandled.
References
Link | Resource |
---|---|
https://xenbits.xen.org/xsa/advisory-245.html | Issue Tracking Patch Vendor Advisory |
https://security.gentoo.org/glsa/201801-14 | |
https://lists.debian.org/debian-lts-announce/2018/10/msg00009.html |
Configurations
Information
Published : 2017-11-28 15:29
Updated : 2018-10-19 03:29
NVD link : CVE-2017-17046
Mitre link : CVE-2017-17046
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
xen
- xen