CVE Vulnerabilities

CVE-2021-26933

Published: Feb 17, 2021 | Modified: Nov 07, 2023
CVSS 3.x
5.5
MEDIUM
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

An issue was discovered in Xen 4.9 through 4.14.x. On Arm, a guest is allowed to control whether memory accesses are bypassing the cache. This means that Xen needs to ensure that all writes (such as the ones during scrubbing) have reached the memory before handing over the page to a guest. Unfortunately, the operation to clean the cache is happening before checking if the page was scrubbed. Therefore there is no guarantee when all the writes will reach the memory.

Affected Software

Name Vendor Start Version End Version
Xen Xen 4.9.0 (including) 4.14.1 (including)
Xen Ubuntu bionic *
Xen Ubuntu esm-infra/bionic *
Xen Ubuntu groovy *
Xen Ubuntu hirsute *
Xen Ubuntu impish *
Xen Ubuntu kinetic *
Xen Ubuntu lunar *
Xen Ubuntu mantic *
Xen Ubuntu trusty *
Xen Ubuntu xenial *

References