CVE-2018-10471

CVSS v3.0 6.5 (Medium)

CVSS v2.0 4.9 (Medium)

EPSS 0.06 % (28^th)

Affected Products 2

Advisories 20

An issue was discovered in Xen through 4.10.x allowing x86 PV guest OS users to cause a denial of service (out-of-bounds zero write and hypervisor crash) via unexpected INT 80 processing, because of an incorrect fix for CVE-2017-5754.

Weaknesses

CWE-787: Out-of-bounds Write

Related CVEs

CVE-2017-5754

CVE Status: PUBLISHED
CNA: MITRE
Published Date: 2018-04-27 15:29:00
(6 years ago)
Updated Date: 2018-10-31 10:30:43
(5 years ago)

Affected Products

Debian

Debian Linux

Xen

Configuration #1

		CPE23	From	Up To
	Xen 4.10.1 and prior versions	cpe:2.3:o:xen:xen		<= 4.10.1

Configuration #2

		CPE23	From	Up To
	Debian Linux 9.0	cpe:2.3:o:debian:debian_linux:9.0