CVE-2019-19581Improper Restriction of Operations within the Bounds of a Memory Buffer in XEN

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents6 sources
Severity
6.5MEDIUMNVD
EPSS
0.1%
top 71.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
XENDebian XENFedoraproject Fedora
Timeline
PublishedDec 11
Latest updateMay 24

Description

An issue was discovered in Xen through 4.12.x allowing 32-bit Arm guest OS users to cause a denial of service (out-of-bounds access) because certain bit iteration is mishandled. In a number of places bitmaps are being used by the hypervisor to track certain state. Iteration over all bits involves functions which may misbehave in certain corner cases: On 32-bit Arm accesses to bitmaps with bit a count which is a multiple of 32, an out of bounds access may occur. A malicious guest may cause a hype

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 2.0 | Impact: 4.0

Affected Packages3 packages

debiandebian/xen< xen 4.11.3+24-g14b62ab3e5-1 (bookworm)
Debianxen/xen< 4.11.3+24-g14b62ab3e5-1+3
NVDxen/xen4.8.04.12.1

Also affects: Fedora 31

Patches

Patch: xenbits.xen.orgPatch: xenbits.xen.org

🔴Vulnerability Details

2
GHSA
GHSA-h398-v6mj-crpf: An issue was discovered in Xen through 42022-05-24
OSV
CVE-2019-19581: An issue was discovered in Xen through 42019-12-11

📋Vendor Advisories

2
Red Hat
xen: bit iteration mishandling allows Arm guest OS users to cause a DoS2020-02-10
Debian
CVE-2019-19581: xen - An issue was discovered in Xen through 4.12.x allowing 32-bit Arm guest OS users...2019

💬Community

2
Bugzilla
CVE-2019-19581 xen: bit iteration mishandling allows Arm guest OS users to cause a DoS [fedora-all]2020-02-10
Bugzilla
CVE-2019-19581 xen: bit iteration mishandling allows Arm guest OS users to cause a DoS2020-02-10