CVE-2019-19580 — Race Condition in XEN

7 documents6 sources

Severity

6.6MEDIUMNVD

OSV7.5

EPSS

0.6%

top 29.87%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN Fedoraproject Fedora

Timeline

PublishedDec 11

Latest updateMay 24

Description

An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to gain host OS privileges by leveraging race conditions in pagetable promotion and demotion operations, because of an incomplete fix for CVE-2019-18421. XSA-299 addressed several critical issues in restartable PV type change operations. Despite extensive testing and auditing, some corner cases were missed. A malicious PV guest administrator may be able to escalate their privilege to that of the host. All security-suppo…

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.7 | Impact: 5.9

Affected Packages3 packages

▶debiandebian/xen< xen 4.11.3+24-g14b62ab3e5-1 (bookworm)

▶Debianxen/xen< 4.11.3+24-g14b62ab3e5-1+3

▶NVDxen/xen4.12.1

Also affects: Fedora 31

Patches

Patch: xenbits.xen.org ↗Patch: xenbits.xen.org ↗

🔴Vulnerability Details

GHSA

GHSA-5f2h-r2x9-9p3v: An issue was discovered in Xen through 4↗2022-05-24

▶

OSV

CVE-2019-19580: An issue was discovered in Xen through 4↗2019-12-11

▶

📋Vendor Advisories

Red Hat

xen: Further issues with restartable PV type change operations (XSA-310)↗2019-12-11

▶

Debian

CVE-2019-19580: xen - An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to ...↗2019

▶

💬Community

Bugzilla

CVE-2019-19580 xen: Further issues with restartable PV type change operations (XSA-310) [fedora-all]↗2019-12-11

▶

Bugzilla

CVE-2019-19580 xen: Further issues with restartable PV type change operations (XSA-310)↗2019-11-29

▶