Lucene search
XENVULNRICHMENT:CVE-2024-31142HistoryMay 16, 2024 - 1:39 p.m.
CVE-2024-31142 x86: Incorrect logic for BTC/SRSO mitigations
2024-05-1613:39:42
XEN
github.com
2
logic error
xsa-407
xsa-434
branch type confusion
mitigation
speculative return stack overflow
Because of a logical error in XSA-407 (Branch Type Confusion), the
mitigation is not applied properly when it is intended to be used.
XSA-434 (Speculative Return Stack Overflow) uses the same
infrastructure, so is equally impacted.
For more details, see:
https://xenbits.xen.org/xsa/advisory-407.html
https://xenbits.xen.org/xsa/advisory-434.html
CNA Affected
[
{
"defaultStatus": "unknown",
"product": "Xen",
"vendor": "Xen",
"versions": [
{
"status": "unknown",
"version": "consult Xen advisory XSA-455"
}
]
}
]Related
osv
osv
CVE-2024-31142
2024-05-16 14:15:08
debiancve
debiancve
CVE-2024-31142
2024-05-16 14:15:08
xen
xen
x86: Incorrect logic for BTC/SRSO mitigations
2024-04-09 16:29:00
nvd
nvd
CVE-2024-31142
2024-05-16 14:15:08
cvelist
cvelist
CVE-2024-31142 x86: Incorrect logic for BTC/SRSO mitigations
2024-05-16 13:39:42
ubuntucve
ubuntucve
CVE-2024-31142
2024-05-16 00:00:00
cve
cve
CVE-2024-31142
2024-05-16 14:15:08
openvas
openvas
openSUSE: Security Advisory for xen (SUSE-SU-2024:1259-1)
2024-04-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1541-1)
2024-05-07 00:00:00
Fedora: Security Advisory for xen (FEDORA-2024-4357ec611d)
2024-05-27 00:00:00
nessus
nessus
Fedora 38 : xen (2024-a676697123)
2024-04-25 00:00:00
Fedora 39 : xen (2024-4357ec611d)
2024-04-25 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: xen-4.17.4-1.fc38
2024-04-26 01:04:11
[SECURITY] Fedora 40 Update: xen-4.18.2-1.fc40
2024-04-25 01:00:44
[SECURITY] Fedora 39 Update: xen-4.17.4-1.fc39
2024-04-25 01:20:27
citrix
citrix
6.6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Related for VULNRICHMENT:CVE-2024-31142