Lucene search

K

GoogleOSV:CVE-2017-10911

HistoryJul 05, 2017 - 1:29 a.m.

CVE-2017-10911

2017-07-0501:29:00

Google

osv.dev

13

0.001 Low

EPSS

Percentile

26.7%

The make_response function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS (or other guest OS) kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structures, aka XSA-216.

CPENameOperatorVersion
xeneq4.7.1-r4
xeneq4.7.0-r3
xeneq4.8.1-r4
xeneq4.6.3-r2
xeneq4.4.1-r8
xeneq4.0.1-r3
xeneq4.3.0-r3
xeneq4.7.1-r2
xeneq4.7.0-r0
xeneq4.6.3-r5

Rows per page:

1-10 of 1321

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=089bc0143f489bd3a4578bdff5f4ca68fb26f341

www.debian.org/security/2017/dsa-3920

www.debian.org/security/2017/dsa-3927

www.debian.org/security/2017/dsa-3945

www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.11.8

www.securityfocus.com/bid/99162

www.securitytracker.com/id/1038720

github.com/torvalds/linux/commit/089bc0143f489bd3a4578bdff5f4ca68fb26f341

lists.debian.org/debian-lts-announce/2018/09/msg00007.html

security.gentoo.org/glsa/201708-03

xenbits.xen.org/xsa/advisory-216.html

0.001 Low

EPSS

Percentile

26.7%

Related for OSV:CVE-2017-10911

nvd1 debiancve1 cvelist1 redhatcve1 prion1 cve1 xen1 ubuntucve1 nessus30 openvas27 ubuntu9 osv5 photon2 debian7 suse7 citrix1 cloudfoundry1 fedora2