vulnerability

Debian: CVE-2024-45819: xen -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:S/C:C/I:N/A:N)	Dec 19, 2024	Dec 30, 2024	Mar 30, 2026

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:N/A:N)

Published

Dec 19, 2024

Added

Dec 30, 2024

Modified

Mar 30, 2026

Description

PVH guests have their ACPI tables constructed by the toolstack. The
construction involves building the tables in local memory, which are
then copied into guest memory. While actually used parts of the local
memory are filled in correctly, excess space that is being allocated is
left with its prior contents.

Solution

debian-upgrade-xen

References

CVE-2024-45819
https://attackerkb.com/topics/CVE-2024-45819
CWE-276
DEBIAN-DSA-5836-1
EUVD-EUVD-2024-41273
https://euvd.enisa.europa.eu/vulnerability/EUVD-2024-41273

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report