Xen through 4.11.x Improper Input Validation Vulnerability

Summary

An issue was discovered in Xen through 4.11.x allowing x86 PV guest OS users

Credit:

The information has been provided by Paul Durrant

The original article can be found at:https://xenbits.xen.org/xsa/advisory-288.html

 


Details

Cause a denial of service or gain privileges by leveraging incorrect use of the HVM physmap concept for PV domains.

Vulnerable Systems:

Xen through 4.11.x 

CVE Information:

CVE-2019-17343

Disclosure Timeline:
Published Date:10/07/2019