vulnerability

SUSE: CVE-2017-14319: SUSE Linux Security Advisory

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Sep 12, 2017	Sep 13, 2017	Jun 20, 2021

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Sep 12, 2017

Added

Sep 13, 2017

Modified

Jun 20, 2021

Description

A grant unmapping issue was discovered in Xen through 4.9.x. When removing or replacing a grant mapping, the x86 PV specific path needs to make sure page table entries remain in sync with other accounting done. Although the identity of the page frame was validated correctly, neither the presence of the mapping nor page writability were taken into account.

Solutions

suse-upgrade-xensuse-upgrade-xen-develsuse-upgrade-xen-doc-htmlsuse-upgrade-xen-doc-pdfsuse-upgrade-xen-kmp-defaultsuse-upgrade-xen-kmp-paesuse-upgrade-xen-libssuse-upgrade-xen-libs-32bitsuse-upgrade-xen-toolssuse-upgrade-xen-tools-domu

References

SUSE-SUSE-SU-2017:2420-1
SUSE-SUSE-SU-2017:2450-1
SUSE-SUSE-SU-2017:2466-1
SUSE-SUSE-SU-2017:2519-1
SUSE-SUSE-SU-2017:2541-1
SUSE-SUSE-SU-2017:2611-1
DEBIAN-DSA-4050
NVD-CVE-2017-14319

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today