CVE Vulnerabilities

CVE-2017-15594

Published: Oct 18, 2017 | Modified: Oct 03, 2019
CVSS 3.x
8.8
HIGH
Source:
NVD
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
8 IMPORTANT
CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Ubuntu

An issue was discovered in Xen through 4.9.x allowing x86 SVM PV guest OS users to cause a denial of service (hypervisor crash) or gain privileges because IDT settings are mishandled during CPU hotplugging.

Affected Software

Name Vendor Start Version End Version
Xen Xen * 4.9.0
Xen Ubuntu artful *
Xen Ubuntu bionic *
Xen Ubuntu esm-infra/xenial *
Xen Ubuntu trusty *
Xen Ubuntu upstream *
Xen Ubuntu xenial *
Xen Ubuntu zesty *

References