SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2017:2519-1)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-14316: Missing bound check in function allocheappages for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen XSA-231, bsc1056278 - CVE-2017-14318: The function...

SUSE SLES12 Security Update : xen (SUSE-SU-2017:2466-1)

This update for xen fixes several issues. These security issues were fixed : - CVE-2017-14316: Missing bound check in function allocheappages for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen XSA-231, bsc1056278 - CVE-2017-14318: The function...

CVE-2017-14318

An issue was discovered in Xen 4.5.x through 4.9.x. The function gnttabcacheflush handles GNTTABOPcacheflush grant table operations. It checks to see if the calling domain is the owner of the page that is to be operated on. If it is not, the owner's grant table is checked to see if a grant mappin...

CVE-2017-14318

CVE-2017-14318 affects Xen 4.5.x–4.9.x. The vulnerability arises in __gnttab_cache_flush: when operating on a page owned by special domains (DOMID_XEN/IO/COW) that lack a grant table, the code may dereference a NULL pointer since it does not verify the owner’s grant table existence. This can enab...