CVE-2019-19582Infinite Loop in XEN

CWE-835Infinite LoopCWE-400Uncontrolled Resource Consumption7 documents6 sources
Severity
6.5MEDIUMNVD
EPSS
0.1%
top 71.04%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
XENDebian XENFedoraproject Fedora
Timeline
PublishedDec 11
Latest updateMay 24

Description

An issue was discovered in Xen through 4.12.x allowing x86 guest OS users to cause a denial of service (infinite loop) because certain bit iteration is mishandled. In a number of places bitmaps are being used by the hypervisor to track certain state. Iteration over all bits involves functions which may misbehave in certain corner cases: On x86 accesses to bitmaps with a compile time known size of 64 may incur undefined behavior, which may in particular result in infinite loops. A malicious guest

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 2.0 | Impact: 4.0

Affected Packages3 packages

debiandebian/xen< xen 4.11.3+24-g14b62ab3e5-1 (bookworm)
Debianxen/xen< 4.11.3+24-g14b62ab3e5-1+3
NVDxen/xen4.8.04.12.1

Also affects: Fedora 31

Patches

Patch: xenbits.xen.orgPatch: xenbits.xen.org

🔴Vulnerability Details

2
GHSA
GHSA-wv8f-82g9-5vhw: An issue was discovered in Xen through 42022-05-24
OSV
CVE-2019-19582: An issue was discovered in Xen through 42019-12-11

📋Vendor Advisories

2
Red Hat
xen: denial of service in find_next_bit() (XSA-307)2019-12-11
Debian
CVE-2019-19582: xen - An issue was discovered in Xen through 4.12.x allowing x86 guest OS users to cau...2019

💬Community

2
Bugzilla
CVE-2019-19582 xen: denial of service in find_next_bit() (XSA-307) [fedora-all]2019-12-11
Bugzilla
CVE-2019-19582 xen: denial of service in find_next_bit() (XSA-307)2019-11-29