CVE-2017-15597
CRITICAL9.1EPSS 1.5%發布日:2017/10/30修改日:2025/12/3
也稱為:ALPINE-CVE-2017-15597DEBIAN-CVE-2017-15597
描述
An issue was discovered in Xen through 4.9.x. Grant copying code made an implication that any grant pin would be accompanied by a suitable page reference. Other portions of code, however, did not match up with that assumption. When such a grant copy operation is being done on a grant of a dying domain, the assumption turns out wrong. A malicious guest administrator can cause hypervisor memory corruption, most likely resulting in host crash and a Denial of Service. Privilege escalation and information leaks cannot be ruled out.
受影響套件(2)
- Alpine/xenfrom 0, < 4.9.0-r7
- Debian/xenfrom 0, < 4.8.2+xsa245-0+deb9u1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | CRITICAL9.1 | CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |