CVE-2017-15588 — Race Condition in XEN

CWE-362 — Race Condition8 documents7 sources

Severity

7.8HIGHNVD

EPSS

0.1%

top 76.52%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN

Timeline

PublishedOct 18

Latest updateMay 14

Description

An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to execute arbitrary code on the host OS because of a race condition that can cause a stale TLB entry.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:HExploitability: 1.1 | Impact: 6.0

Affected Packages3 packages

▶debiandebian/xen< xen 4.8.2+xsa245-0+deb9u1 (bookworm)

▶Debianxen/xen< 4.8.2+xsa245-0+deb9u1+3

▶NVDxen/xen4.9.0

Patches

Patch: xenbits.xen.org ↗Patch: xenbits.xen.org ↗

🔴Vulnerability Details

GHSA

GHSA-5chc-m6j7-c756: An issue was discovered in Xen through 4↗2022-05-14

▶

Project0

Taking a page from the kernel's book: A TLB issue in mremap() - Project Zero↗2019-01-01

▶

OSV

CVE-2017-15588: An issue was discovered in Xen through 4↗2017-10-18

▶

📋Vendor Advisories

Red Hat

xen: Stale TLB entry due to page type release race (XSA-241)↗2017-10-12

▶

Debian

CVE-2017-15588: xen - An issue was discovered in Xen through 4.9.x allowing x86 PV guest OS users to e...↗2017

▶

💬Community

Bugzilla

CVE-2017-15588 CVE-2017-15589 CVE-2017-15590 CVE-2017-15591 CVE-2017-15592 CVE-2017-15593 CVE-2017-15594 CVE-2017-15595 xen: various flaws [fedora-all]↗2017-10-12

▶

Bugzilla

CVE-2017-15588 xsa241 xen: Stale TLB entry due to page type release race (XSA-241)↗2017-10-09

▶