vulnerability
SUSE: CVE-2020-27672: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:M/Au:N/C:C/I:C/A:C) | Oct 22, 2020 | Dec 11, 2020 | Oct 22, 2021 |
Severity
7
CVSS
(AV:L/AC:M/Au:N/C:C/I:C/A:C)
Published
Oct 22, 2020
Added
Dec 11, 2020
Modified
Oct 22, 2021
Description
An issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a host OS denial of service, achieve data corruption, or possibly gain privileges by exploiting a race condition that leads to a use-after-free involving 2MiB and 1GiB superpages.
Solution(s)
suse-upgrade-xensuse-upgrade-xen-develsuse-upgrade-xen-doc-htmlsuse-upgrade-xen-kmp-defaultsuse-upgrade-xen-kmp-paesuse-upgrade-xen-libssuse-upgrade-xen-libs-32bitsuse-upgrade-xen-toolssuse-upgrade-xen-tools-domususe-upgrade-xen-tools-xendomains-wait-disk
References
- SUSE-SUSE-SU-2020:14557-1
- SUSE-SUSE-SU-2020:3049-1
- SUSE-SUSE-SU-2020:3050-1
- SUSE-SUSE-SU-2020:3051-1
- SUSE-SUSE-SU-2020:3052-1
- SUSE-SUSE-SU-2020:3088-1
- SUSE-SUSE-SU-2020:3611-1
- SUSE-SUSE-SU-2020:3615-1
- SUSE-SUSE-SU-2020:3627-1
- SUSE-SUSE-SU-2020:3631-1
- SUSE-SUSE-SU-2020:3653-1
- SUSE-SUSE-SU-2020:3742-1
- NVD-CVE-2020-27672
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.