SB2017112830 - Fedora 27 update for xen
Published: November 28, 2017 Updated: April 24, 2025
Security Bulletin ID
SB2017112830
CSH Severity
Low
Patch available
YES
Number of vulnerabilities
2
Exploitation vector
Adjecent network
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 vulnerabilities.
1) Infinite loop (CVE-ID: CVE-2017-17044)
CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
CVSSv4: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows an adjacent attacker to cause DoS condition on the target system.
The weakness exists due to an infinite loop. An adjacent attacker can trigger an error handling flaw in the processing of errors from the Populate on Demand (PoD) code and cause the service to crash.
2) Privilege escalation (CVE-ID: CVE-2017-17045)
CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls
CVSSv4: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
The vulnerability allows an adjacent attacker to gain elevated privileges on the target system.
The weakness exists due to improper privileges control. An adjacent attacker can trigger a p2m error checking flaw in the Populate on Demand (PoD) code and gain write access to freed memory and gain elevated privileges on the host system.
Remediation
Install update from vendor's website.