[3.7] xen: Multiple vulnerabilities (CVE-2017-10911, CVE-2017-10912, CVE-2017-10913, CVE-2017-10914, CVE-2017-10915, CVE-2017-10916, CVE-2017-10917, CVE-2017-10918, CVE-2017-10919, CVE-2017-10920, CVE-2017-10921, CVE-2017-10922, CVE-2017-10923)ID: oval:org.secpod.oval:def:1800702 | Date: (C)2018-03-29 (M)2024-01-02 |
Class: PATCH | Family: unix |
CVE-2017-10911, XSA-216: blkif responses leak backend stack data Reference:¶ CVE-2017-10912, XSA-217: page transfer may allow PV guest to elevate privilege Reference:¶ CVE-2017-10913, CVE-2017-10914, XSA-218: Races in the grant table unmap code Reference:¶ CVE-2017-10915, XSA-219: x86: insufficient reference counts during shadow emulation Reference:¶ CVE-2017-10916, XSA-220: x86: PKRU and BND* leakage between vCPU-s Reference:¶ CVE-2017-10917, XSA-221: NULL pointer deref in event channel poll Reference:¶ CVE-2017-10918, XSA-222: stale P2M mappings due to insufficient error checking Reference:¶ CVE-2017-10919, XSA-223: ARM guest disabling interrupt may crash Xen Reference:¶ CVE-2017-10920, CVE-2017-10921, CVE-2017-10922, XSA-224: grant table operations mishandle reference counts Reference:¶ CVE-2017-10923, XSA-225: arm: vgic: Out-of-bound access when sending SGIs Reference:¶
Platform: |
Alpine Linux 3.7 |