CVE-2023-34321

2024-01-0517:15:08

Debian Security Bug Tracker

security-tracker.debian.org

arm

cache cleaning

overflow

memory writes

helpers

invalidation

3.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

5.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.2%

JSON

Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes (such as the ones during scrubbing) have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the helpers can overflow and would then result to skip the cache cleaning/invalidation. Therefore there is no guarantee when all the writes will reach the memory.

OSVersionArchitecturePackageVersionFilename
Debian12allxen< 4.17.2+76-ge1f9cb16e2-1~deb12u1xen_4.17.2+76-ge1f9cb16e2-1~deb12u1_all.deb
Debian11allxen<= 4.14.6-1xen_4.14.6-1_all.deb
Debian999allxen< 4.17.2+55-g0b56bed864-1xen_4.17.2+55-g0b56bed864-1_all.deb
Debian13allxen< 4.17.2+55-g0b56bed864-1xen_4.17.2+55-g0b56bed864-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	xen	< 4.17.2+76-ge1f9cb16e2-1~deb12u1	xen_4.17.2+76-ge1f9cb16e2-1~deb12u1_all.deb
Debian	11	all	xen	<= 4.14.6-1	xen_4.14.6-1_all.deb
Debian	999	all	xen	< 4.17.2+55-g0b56bed864-1	xen_4.17.2+55-g0b56bed864-1_all.deb
Debian	13	all	xen	< 4.17.2+55-g0b56bed864-1	xen_4.17.2+55-g0b56bed864-1_all.deb