Lucene search
HistoryMar 20, 2024 - 11:15 a.m.
CVE-2023-46839
cve-2023-46839
pci
phantom functions
request generation
iommu context
device assignment
security vulnerability
PCI devices can make use of a functionality called phantom functions,
that when enabled allows the device to generate requests using the IDs
of functions that are otherwise unpopulated. This allows a device to
extend the number of outstanding requests.
Such phantom functions need an IOMMU context setup, but failure to
setup the context is not fatal when the device is assigned. Not
failing device assignment when such failure happens can lead to the
primary device being assigned to a guest, while some of the phantom
functions are assigned to a different domain.
Related
openvas
openvas
openSUSE: Security Advisory for xen (SUSE-SU-2024:0264-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for xen (SUSE-SU-2024:0268-1)
2024-03-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:0269-1)
2024-01-31 00:00:00
xen
xen
pci: phantom functions assigned to incorrect contexts
2024-01-30 12:00:00
nessus
nessus
SUSE SLES15 Security Update : xen (SUSE-SU-2024:0270-1)
2024-01-31 00:00:00
SUSE SLES12 Security Update : xen (SUSE-SU-2024:0265-1)
2024-02-01 00:00:00
SUSE SLED15 / SLES15 Security Update : xen (SUSE-SU-2024:0268-1)
2024-01-31 00:00:00
osv
osv
CVE-2023-46839
2024-03-20 11:15:08
ubuntucve
ubuntucve
CVE-2023-46839
2024-03-20 00:00:00
veracode
veracode
Misassignment Of Phantom Functions
2024-02-06 16:43:05
debiancve
debiancve
CVE-2023-46839
2024-03-20 11:15:08
redhatcve
redhatcve
CVE-2023-46839
2024-03-20 20:28:04
cvelist
cvelist
pci: phantom functions assigned to incorrect contexts
2024-03-20 10:35:52
fedora
fedora
[SECURITY] Fedora 38 Update: xen-4.17.2-6.fc38
2024-02-15 01:42:54
[SECURITY] Fedora 39 Update: xen-4.17.2-6.fc39
2024-02-15 01:00:14
mageia
mageia
Updated xen, qemu and libvirt packages fix security vulnerabilities
2024-02-25 01:51:43