CVE-2020-29486 — Allocation of Resources Without Limits or Throttling in XEN

CWE-770 — Allocation of Resources Without Limits or Throttling4 documents4 sources

Severity

6.0MEDIUMNVD

EPSS

0.1%

top 81.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN Debian Linux +1 more

Timeline

PublishedDec 15

Latest updateMay 24

Description

An issue was discovered in Xen through 4.14.x. Nodes in xenstore have an ownership. In oxenstored, a owner could give a node away. However, node ownership has quota implications. Any guest can run another guest out of quota, or create an unbounded number of nodes owned by dom0, thus running xenstored out of memory A malicious guest administrator can cause a denial of service against a specific guest or against the whole host. All systems using oxenstored are vulnerable. Building and using oxenst…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:HExploitability: 1.5 | Impact: 4.0

Affected Packages3 packages

▶debiandebian/xen< xen 4.14.0+88-g1d1d1f5391-1 (bookworm)

▶Debianxen/xen< 4.14.0+88-g1d1d1f5391-1+3

▶NVDxen/xen4.14.0

Also affects: Debian Linux 10.0, Fedora 32, 33

Patches

Patch: xenbits.xenproject.org ↗Patch: xenbits.xenproject.org ↗

🔴Vulnerability Details

GHSA

GHSA-423g-qv8g-mgcc: An issue was discovered in Xen through 4↗2022-05-24

▶

OSV

CVE-2020-29486: An issue was discovered in Xen through 4↗2020-12-15

▶

📋Vendor Advisories

Debian

CVE-2020-29486: xen - An issue was discovered in Xen through 4.14.x. Nodes in xenstore have an ownersh...↗2020

▶