Description

Guests can cause Xenstore crash via soft reset When a guest issues a "Soft Reset" (e.g. for performing a kexec) the libxl based Xen toolstack will normally perform a XS_RELEASE Xenstore operation. Due to a bug in xenstored this can result in a crash of xenstored. Any other use of XS_RELEASE will have the same impact.

Related CPE's

o

xen

xen

4.17.0

*

*

*

*

*

x64

Vulnerable

References

https://security.gentoo.org/glsa/202402-07

https://xenbits.xenproject.org/xsa/advisory-425.txt

Vendor Advisory

Weaknesses

[email protected]

Primary
NVD-CWE-noinfo

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.5 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-01-26T21:16:47.947

2 years ago

Last modified

2024-02-04T08:15:13.050

1 year ago