CVE-2018-19965

An issue was discovered in Xen through 4.11.x allowing 64-bit PV guest OS users to cause a denial of service (host OS crash) because #GP[0] can occur after a non-canonical address is passed to the TLB flushing code. NOTE: this issue exists because of an incorrect CVE-2017-5754 (aka Meltdown) mitigation.
Configurations

Configuration 1 (hide)

cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:citrix:xenserver:7.0:*:*:*:*:*:*:*
cpe:2.3:a:citrix:xenserver:7.1:cu1:*:*:ltsr:*:*:*
cpe:2.3:a:citrix:xenserver:7.5:*:*:*:*:*:*:*
cpe:2.3:a:citrix:xenserver:7.6:*:*:*:*:*:*:*

Configuration 3 (hide)

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

History

07 Nov 2023, 02:55

Type Values Removed Values Added
References
  • {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UXC6BME7SXJI2ZIATNXCAH7RGPI4UKTT/', 'name': 'FEDORA-2019-bce6498890', 'tags': [], 'refsource': 'FEDORA'}
  • () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UXC6BME7SXJI2ZIATNXCAH7RGPI4UKTT/ -

Information

Published : 2018-12-08 04:29

Updated : 2024-02-28 16:48


NVD link : CVE-2018-19965

Mitre link : CVE-2018-19965

CVE.ORG link : CVE-2018-19965


JSON object : View

Products Affected

debian

  • debian_linux

citrix

  • xenserver

xen

  • xen