Showing 1 - 3 of 3

CVE-2020-11742

Status Candidate

Overview

An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of bad continuation handling in GNTTABOP_copy. Grant table operations are expected to return 0 for success, and a negative number for errors. The fix for CVE-2017-12135 introduced a path through grant copy handling where success may be returned to the caller without any action taken. In particular, the status fields of individual operations are left uninitialised, and may result in errant behaviour in the caller of GNTTABOP_copy. A buggy or malicious guest can construct its grant table in such a way that, when a backend domain tries to copy a grant, it hits the incorrect exit path. This returns success to the caller without doing anything, which may cause crashes or other incorrect behaviour.

Related Files

Ubuntu Security Notice USN-5617-1: Posted Sep 19, 2022; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 5617-1 - It was discovered that memory contents previously stored in microarchitectural special registers after RDRAND, RDSEED, and SGX EGETKEY read operations on Intel client and Xeon E3 processors may be briefly exposed to processes on the same or different processor cores. A local attacker could use this to expose sensitive information. Julien Grall discovered that Xen incorrectly handled memory barriers on ARM-based systems. An attacker could possibly use this issue to cause a denial of service, obtain sensitive information or escalate privileges.; tags | advisory, denial of service, local; systems | linux, ubuntu; advisories | CVE-2020-0543, CVE-2020-11739, CVE-2020-11742, CVE-2020-15563, CVE-2020-15564, CVE-2020-15565, CVE-2020-15566, CVE-2020-15567, CVE-2020-25595, CVE-2020-25596, CVE-2020-25597, CVE-2020-25599, CVE-2020-25600, CVE-2020-25601; SHA-256 | 650005c21b26b7970b9035b36b8dca3aa7d9fbba307cbcf7d4eded34c754cfb8; Download | Favorite | View

Debian Security Advisory 4723-1: Posted Jul 28, 2020; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4723-1 - Multiple vulnerabilities have been discovered in the Xen hypervisor, which could result in denial of service, guest-to-host privilege escalation or information leaks.; tags | advisory, denial of service, vulnerability; systems | linux, debian; advisories | CVE-2020-11739, CVE-2020-11740, CVE-2020-11741, CVE-2020-11742, CVE-2020-11743, CVE-2020-15563, CVE-2020-15564, CVE-2020-15565, CVE-2020-15566, CVE-2020-15567; SHA-256 | 23a14d5d4f1b40346c3b8f9436b94f8f84c91c2bcadf8328b731909eac010506; Download | Favorite | View

Gentoo Linux Security Advisory 202005-08: Posted May 15, 2020; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 202005-8 - Multiple vulnerabilities have been found in Xen, the worst of which could allow privilege escalation. Versions less than 4.12.2-r2 are affected.; tags | advisory, vulnerability; systems | linux, gentoo; advisories | CVE-2020-11739, CVE-2020-11740, CVE-2020-11741, CVE-2020-11742, CVE-2020-11743; SHA-256 | 8ba00f32c4e9e8000a32d7371e9e6a65e8aad643c362364438ff870a9a4f70d0; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 297 files
Ubuntu 69 files
Debian 20 files
Gentoo 8 files
Apple 6 files
Google Security Research 4 files
LiquidWorm 4 files
Spencer McIntyre 3 files
Alter Prime 3 files
Jann Horn 3 files

File Archives

Systems

AIX (430)
Apple (2,132)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,172)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (395)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (52,112)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,459)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (10,018)
UNIX (9,482)
UnixWare (188)
Windows (6,785)
Other

CVE-2020-11742

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems