Lucene search

MitreCVELIST:CVE-2017-10918

HistoryJul 05, 2017 - 1:00 a.m.

CVE-2017-10918

2017-07-0501:00:00

mitre

www.cve.org

7.1 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

83.1%

JSON

Xen through 4.8.x does not validate memory allocations during certain P2M operations, which allows guest OS users to obtain privileged host OS access, aka XSA-222.

References

www.debian.org/security/2017/dsa-3969

www.securityfocus.com/bid/99161

www.securitytracker.com/id/1038732

security.gentoo.org/glsa/201708-03

security.gentoo.org/glsa/201710-17

xenbits.xen.org/xsa/advisory-222.html