CVE-2018-19962

An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because small IOMMU mappings are unsafely combined into larger ones.
Configurations

Configuration 1 (hide)

cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:a:citrix:xenserver:7.0:*:*:*:*:*:*:*
cpe:2.3:a:citrix:xenserver:7.1:cu1:*:*:ltsr:*:*:*
cpe:2.3:a:citrix:xenserver:7.5:*:*:*:*:*:*:*
cpe:2.3:a:citrix:xenserver:7.6:*:*:*:*:*:*:*

History

07 Nov 2023, 02:55

Type Values Removed Values Added
References
  • {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UXC6BME7SXJI2ZIATNXCAH7RGPI4UKTT/', 'name': 'FEDORA-2019-bce6498890', 'tags': [], 'refsource': 'FEDORA'}
  • () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UXC6BME7SXJI2ZIATNXCAH7RGPI4UKTT/ -

Information

Published : 2018-12-08 04:29

Updated : 2024-02-28 16:48


NVD link : CVE-2018-19962

Mitre link : CVE-2018-19962

CVE.ORG link : CVE-2018-19962


JSON object : View

Products Affected

debian

  • debian_linux

citrix

  • xenserver

xen

  • xen
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor