Xen allows local OS guest users to cause a denial of service (crash) or possibly obtain sensitive information or gain privileges via vectors involving transitive grants.
References
Link | Resource |
---|---|
http://www.debian.org/security/2017/dsa-3969 | Third Party Advisory |
http://www.openwall.com/lists/oss-security/2017/08/15/1 | Mailing List Mitigation Third Party Advisory |
http://www.openwall.com/lists/oss-security/2017/08/17/6 | Mailing List Mitigation Third Party Advisory |
http://www.openwall.com/lists/oss-security/2020/04/14/4 | |
http://www.securityfocus.com/bid/100344 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1039178 | Third Party Advisory VDB Entry |
http://xenbits.xen.org/xsa/advisory-226.html | Mitigation Patch Vendor Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=1477655 | Issue Tracking Mitigation Patch Third Party Advisory |
https://security.gentoo.org/glsa/201801-14 | Third Party Advisory |
https://support.citrix.com/article/CTX225941 | Patch Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
No history.
Information
Published : 2017-08-24 14:29
Updated : 2024-02-04 19:29
NVD link : CVE-2017-12135
Mitre link : CVE-2017-12135
CVE.ORG link : CVE-2017-12135
JSON object : View
Products Affected
debian
- debian_linux
xen
- xen
citrix
- xenserver
CWE
CWE-682
Incorrect Calculation