[XSA-349] Frontends can trigger OOM in Backends by update a watched path

Severity Medium

Affected Packages 1

CVEs 1

ISSUE DESCRIPTION

Some OSes (such as Linux, FreeBSD, NetBSD) are processing watch events
using a single thread. If the events are received faster than the thread
is able to handle, they will get queued.

As the queue is unbound, a guest may be able to trigger a OOM in
the backend.

IMPACT

A malicious guest can trigger an OOM in backends.

VULNERABLE SYSTEMS

All systems with a FreeBSD, Linux, NetBSD dom0 are vulnerable.

All version of those OSes are vulnerable.

Package	Affected Version
pkg:generic/xen

ID

XSA-349

Severity

medium

Severity from

CVE-2020-29568

URL

http://xenbits.xen.org/xsa/advisory-349.html

Published

2020-12-15T12:00:00
(3 years ago)

Modified

2020-12-15T12:00:00
(3 years ago)

Rights

Xen Project

Other Advisories

Source	# ID	Name	URL
Xen Project	XSA-349	Security Advisory	http://xenbits.xen.org/xsa/advisory-349.html
Xen Project	XSA-349	Signed Security Advisory	http://xenbits.xen.org/xsa/advisory-349.txt

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch	Patch / Fix
Affected	pkg:generic/xen		xen

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date