An issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a host OS denial of service, achieve data corruption, or possibly gain privileges by exploiting a race condition that leads to a use-after-free involving 2MiB and 1GiB superpages.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | xen | < 4.14.0+80-gd101b417b7-1 | xen_4.14.0+80-gd101b417b7-1_all.deb |
Debian | 11 | all | xen | < 4.14.0+80-gd101b417b7-1 | xen_4.14.0+80-gd101b417b7-1_all.deb |
Debian | 10 | all | xen | < 4.11.4+57-g41a822c392-1 | xen_4.11.4+57-g41a822c392-1_all.deb |
Debian | 999 | all | xen | < 4.14.0+80-gd101b417b7-1 | xen_4.14.0+80-gd101b417b7-1_all.deb |
Debian | 13 | all | xen | < 4.14.0+80-gd101b417b7-1 | xen_4.14.0+80-gd101b417b7-1_all.deb |