SB2017121464 - Fedora 26 update for xen
Published: December 14, 2017 Updated: April 24, 2025
Security Bulletin ID
SB2017121464
Severity
Low
Patch available
YES
Number of vulnerabilities
7
Exploitation vector
Adjecent network
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 7 secuirty vulnerabilities.
1) Resource exhaustion (CVE-ID: CVE-2017-15595)
The vulnerability allows an adjacent attacker to gain elevated privileges or cause DoS conditions on the target system.The weakness exists due to improper input validation. An adjacent attacker can supply specially crafted page-table stacking, trigger unbounded recursion, stack consumption, gain elevated privileges or cause hypervisor crash.
2) Infinite loop (CVE-ID: CVE-2017-17044)
The vulnerability allows an adjacent attacker to cause DoS condition on the target system.The weakness exists due to an infinite loop. An adjacent attacker can trigger an error handling flaw in the processing of errors from the Populate on Demand (PoD) code and cause the service to crash.
3) Privilege escalation (CVE-ID: CVE-2017-17045)
The vulnerability allows an adjacent attacker to gain elevated privileges on the target system.The weakness exists due to improper privileges control. An adjacent attacker can trigger a p2m error checking flaw in the Populate on Demand (PoD) code and gain write access to freed memory and gain elevated privileges on the host system.
4) Denial of service (CVE-ID: CVE-2017-17566)
The vulnerability allows an adjacent attacker to cause DoS condition on the target system.The weakness exists due to improper auxiliary page mapping. A remote attacker can cause the system to crash.
5) Memory corruption (CVE-ID: CVE-2017-17563)
The vulnerability allows an adjacent attacker to gain elevated privileges or cause a denial of service (DoS) condition on a targeted host system.The weakness exists due to insufficient reference count overflow checking. An adjacent attacker can use a mask that is larger than the reference count that is set on a targeted system, trigger memory corruption and cause the hypervisor to crash or gain elevated privileges.
6) Denial of service (CVE-ID: CVE-2017-17564)
The vulnerability allows an adjacent attacker to cause DoS condition or gain elevated privileges.The weakness exists due to improper error handling for reference counts. A remote attacker can trigger memory corruption, cause the hypervisor to crash or gain elevated privileges on the target system.
7) Denial of service (CVE-ID: CVE-2017-17565)
The vulnerability allows an adjacent attacker to cause DoS condition on the target system.The weakness exists due to improper assertion related to machine-to-physical (M2P) translation table entries. A remote attacker can cause the system to crash.
Remediation
Install update from vendor's website.