Published: 12/09/2017 Updated: 19/10/2018

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 8.8 | Impact Score: 6 | Exploitability Score: 2

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

A parameter verification issue exists in Xen up to and including 4.9.x. The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro. While the function checks to see if the special constant `NUMA_NO_NODE` is specified, it otherwise does not handle the case where `node >= MAX_NUMNODES`. This allows an out-of-bounds access to an internal array.

Vulnerable Product	Search on Vulmon	Subscribe to Product
xen xen

A parameter verification issue was discovered in Xen through 49x The function `alloc_heap_pages` allows callers to specify the first NUMA node that should be used for allocations through the `memflags` parameter; the node is extracted using the `MEMF_get_node` macro While the function checks to see if the special constant `NUMA_NO_NODE` is spec ...

Description of Problem A number of security vulnerabilities have been identified in Citrix XenServer that may allow a malicious administrator of a guest VM to compromise the host These vulnerabilities affect all currently supported versions of Citrix XenServer up to and including Citrix XenServer 72 The following vulnerabilities have been addres ...

CWE-125 http://xenbits.xen.org/xsa/advisory-231.html http://www.securitytracker.com/id/1039348 http://www.securityfocus.com/bid/100818 https://support.citrix.com/article/CTX227185 https://www.debian.org/security/2017/dsa-4050 https://lists.debian.org/debian-lts-announce/2018/10/msg00009.html https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2017-14316

CVE-2017-14316

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect