CVE-2017-12136
24.08.2017, 14:29
Race condition in the grant table code in Xen 4.6.x through 4.9.x allows local guest OS administrators to cause a denial of service (free list corruption and host crash) or gain privileges on the host via vectors involving maptrack free list handling.
| Vendor | Product | Version |
|---|---|---|
| xen | xen | 4.6.0 |
| xen | xen | 4.6.1 |
| xen | xen | 4.6.3 |
| xen | xen | 4.6.4 |
| xen | xen | 4.6.5 |
| xen | xen | 4.6.6 |
| xen | xen | 4.7.0 |
| xen | xen | 4.7.1 |
| xen | xen | 4.7.2 |
| xen | xen | 4.7.3 |
| xen | xen | 4.8.0 |
| xen | xen | 4.8.1 |
| xen | xen | 4.9.0 |
| citrix | xenserver | 6.0.2 |
| citrix | xenserver | 6.2.0 |
| citrix | xenserver | 6.5 |
| citrix | xenserver | 7.0 |
| citrix | xenserver | 7.1 |
| citrix | xenserver | 7.2 |
| debian | debian_linux | 8.0 |
| debian | debian_linux | 9.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
References