[XSA-82] Guest triggerable AMD CPU erratum may cause host hang
ISSUE DESCRIPTION
AMD CPU erratum 793 "Specific Combination of Writes to Write Combined
Memory Types and Locked Instructions May Cause Core Hang" describes a
situation under which a CPU core may hang.
IMPACT
A malicious guest administrator can mount a denial of service attack
affecting the whole system.
VULNERABLE SYSTEMS
The vulnerability is applicable only to family 16h model 00h-0fh AMD
CPUs.
Such CPUs running Xen versions 3.3 onwards are vulnerable. We have
not checked earlier versions of Xen.
HVM guests can always exploit the vulnerability if it is present.
PV guests can exploit the vulnerability only if they have been granted
access to physical device(s).
Non-AMD CPUs are not vulnerable.
CREDITS
This issue's security impact was discovered by Jan Beulich.
| Package | Affected Version |
|---|---|
 pkg:generic/xen
|
= 4.1.x |
|
pkg:generic/xen
|
= 4.2.x |
|
pkg:generic/xen
|
= 4.3.x |
- ID
- XSA-82
- Severity
- medium
- Severity from
- CVE-2013-6885
- URL
- http://xenbits.xen.org/xsa/advisory-82.html
- Published
-
2013-12-02T17:13:00
(10 years ago) - Modified
-
2013-12-02T17:13:00
(10 years ago) - Rights
- Xen Project
- Other Advisories
-
-
DSA-3128-1
-
ELSA-2014-0285
-
ELSA-2014-3034
-
FEDORA-2013-22754
-
FEDORA-2013-22866
-
FEDORA-2013-22888
-
FEDORA-2013-23251
-
FEDORA-2013-23457
-
FEDORA-2013-23466
-
FEDORA-2014-12000
-
FEDORA-2014-12036
-
FEDORA-2014-15503
-
FEDORA-2014-1552
-
FEDORA-2014-15521
-
FEDORA-2014-1559
-
FEDORA-2014-15995
-
FEDORA-2014-16017
-
FEDORA-2014-2170
-
FEDORA-2014-2188
-
FEDORA-2014-2802
-
FEDORA-2014-2862
-
FEDORA-2014-4424
-
FEDORA-2014-4458
-
FEDORA-2014-5915
-
FEDORA-2014-5941
-
FEDORA-2014-7408
-
FEDORA-2014-7423
-
FEDORA-2014-7722
-
FEDORA-2014-7734
-
FEDORA-2014-9472
-
FEDORA-2014-9493
-
FEDORA-2015-0345
-
FEDORA-2015-3721
-
FEDORA-2015-5402
-
FEDORA-2015-6583
-
FEDORA-2015-8252
-
FEDORA-2015-9965
-
GLSA-201407-03
-
SUSE-SU-2015:0481-1
-
SUSE-SU-2015:0581-1
-
SUSE-SU-2015:0652-1
-
SUSE-SU-2015:0736-1
-
SUSE-SU-2015:1174-1
-
SUSE-SU-2015:1376-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Xen Project | XSA-82 | Security Advisory |
|
| Xen Project | XSA-82 | Signed Security Advisory |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:generic/xen | xen | = 4.1.x | ||||
| Affected | pkg:generic/xen | xen | = 4.2.x | ||||
| Affected | pkg:generic/xen | xen | = 4.3.x |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |