CVE-2017-12136

EUVD-2017-3720
Race condition in the grant table code in Xen 4.6.x through 4.9.x allows local guest OS administrators to cause a denial of service (free list corruption and host crash) or gain privileges on the host via vectors involving maptrack free list handling.
Race Condition
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
HIGH
LOW
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 16%
Affected Products (NVD)
VendorProductVersion
xenxen
4.6.0
xenxen
4.6.1
xenxen
4.6.3
xenxen
4.6.4
xenxen
4.6.5
xenxen
4.6.6
xenxen
4.7.0
xenxen
4.7.1
xenxen
4.7.2
xenxen
4.7.3
xenxen
4.8.0
xenxen
4.8.1
xenxen
4.9.0
citrixxenserver
6.0.2
citrixxenserver
6.2.0
citrixxenserver
6.5
citrixxenserver
7.0
citrixxenserver
7.1
citrixxenserver
7.2
debiandebian_linux
8.0
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
xen
bookworm
4.17.3+10-g091466ba55-1~deb12u1
fixed
bullseye
4.14.6-1
fixed
bullseye (security)
4.14.5+94-ge49571868d-1
fixed
jessie
not-affected
sid
4.17.3+36-g54dacb5c02-1
fixed
trixie
4.17.3+36-g54dacb5c02-1
fixed
wheezy
not-affected
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
xen
trusty
dne
xenial
Fixed 4.6.5-0ubuntu1.4
released
zesty
Fixed 4.8.0-1ubuntu2.4
released
Common Weakness Enumeration
References
http://www.debian.org/security/2017/dsa-3969
http://www.openwall.com/lists/oss-security/2017/08/15/3
http://www.securityfocus.com/bid/100346
http://www.securitytracker.com/id/1039175
http://xenbits.xen.org/xsa/advisory-228.html
https://bugzilla.redhat.com/show_bug.cgi?id=1477651
https://security.gentoo.org/glsa/201801-14
https://support.citrix.com/article/CTX225941
http://www.debian.org/security/2017/dsa-3969
http://www.openwall.com/lists/oss-security/2017/08/15/3
http://www.securityfocus.com/bid/100346
http://www.securitytracker.com/id/1039175
http://xenbits.xen.org/xsa/advisory-228.html
https://bugzilla.redhat.com/show_bug.cgi?id=1477651
https://security.gentoo.org/glsa/201801-14
https://support.citrix.com/article/CTX225941