An issue was discovered in Xen through 4.14.x allowing x86 HVM guest OS users to cause a denial of service (stack corruption), cause a data leak, or possibly gain privileges because of an off-by-one error. NOTE: this issue is caused by an incorrect fix for CVE-2020-27671.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | xen | < 4.14.0+88-g1d1d1f5391-1 | xen_4.14.0+88-g1d1d1f5391-1_all.deb |
Debian | 11 | all | xen | < 4.14.0+88-g1d1d1f5391-1 | xen_4.14.0+88-g1d1d1f5391-1_all.deb |
Debian | 10 | all | xen | < 4.11.4+107-gef32c7afa2-1 | xen_4.11.4+107-gef32c7afa2-1_all.deb |
Debian | 999 | all | xen | < 4.14.0+88-g1d1d1f5391-1 | xen_4.14.0+88-g1d1d1f5391-1_all.deb |
Debian | 13 | all | xen | < 4.14.0+88-g1d1d1f5391-1 | xen_4.14.0+88-g1d1d1f5391-1_all.deb |