CVE-2024-31142Protection Mechanism Failure in XEN

CWE-693Protection Mechanism Failure6 documents5 sources
Severity
7.5HIGHNVD
EPSS
3.1%
top 13.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
XENFedoraproject Fedora
Timeline
PublishedMay 16

Description

Because of a logical error in XSA-407 (Branch Type Confusion), the mitigation is not applied properly when it is intended to be used. XSA-434 (Speculative Return Stack Overflow) uses the same infrastructure, so is equally impacted. For more details, see: https://xenbits.xen.org/xsa/advisory-407.html https://xenbits.xen.org/xsa/advisory-434.html

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.6 | Impact: 5.9

Affected Packages3 packages

NVDxen/xen4.16.04.16.6+3
Alpinexen/xen< 4.16.6-r0+7
Debianxen/xen< 4.17.5+23-ga4e5191dc0-1+2

Also affects: Fedora 38, 40

Patches

Patch: xenbits.xenproject.orgPatch: xenbits.xen.orgPatch: xenbits.xenproject.org

🔴Vulnerability Details

4
GHSA
GHSA-g7qc-r5p9-r36r: Because of a logical error in XSA-407 (Branch Type Confusion), the mitigation is not applied properly when it is intended to be used2024-05-16
OSV
CVE-2024-31142: Because of a logical error in XSA-407 (Branch Type Confusion), the mitigation is not applied properly when it is intended to be used2024-05-16
OSV
CVE-2024-31142: Because of a logical error in XSA-407 (Branch Type Confusion), the mitigation is not applied properly when it is intended to be used2024-05-16
CVEList
x86: Incorrect logic for BTC/SRSO mitigations2024-05-16

📋Vendor Advisories

1
Debian
CVE-2024-31142: xen - Because of a logical error in XSA-407 (Branch Type Confusion), the mitigation is...2024
CVE-2024-31142 — Protection Mechanism Failure in XEN | cvebase