Launchpad CVE tracker

CVE 2017-10915

The shadow-paging feature in Xen through 4.8.x mismanages page references and consequently introduces a race condition, which allows guest OS users to obtain Xen privileges, aka XSA-219.

Related bugs and status

CVE-2017-10915 (Candidate) is related to these bugs:

Bug #1321144: /etc/default/grub.d/xen.cfg only works on english language system

		In	Importance	Status
1321144	/etc/default/grub.d/xen.cfg only works on english language system	xen (Ubuntu)	Medium	Fix Released
1321144	/etc/default/grub.d/xen.cfg only works on english language system	xen (Ubuntu Zesty)	Medium	Won't Fix
1321144	/etc/default/grub.d/xen.cfg only works on english language system	xen (Ubuntu Xenial)	Medium	Incomplete

See the

CVE page on Mitre.org for more details.

References

CONFIRM: https://xenbits.xen.or...
BID: 99174
GENTOO: GLSA-201708-03
GENTOO: GLSA-201710-17
DEBIAN: DSA-3969

Launchpad.net

CVE 2017-10915

Related bugs and status

Related bugs

References