CVE-2017-10916
HIGHXen through 4.8.x - Information Exposure via vCPU Context-Switch and MPX/PKU Interaction
Title source: llmDescription
The vCPU context-switch implementation in Xen through 4.8.x improperly interacts with the Memory Protection Extensions (MPX) and Protection Key (PKU) features, which makes it easier for guest OS users to defeat ASLR and other protection mechanisms, aka XSA-220.
References (5)
Core 5
Core References
Mailing List, Mitigation, Vendor Advisory x_refsource_confirm
https://xenbits.xen.org/xsa/advisory-220.html
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201708-03
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2017/dsa-3969
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1038730
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/99167
Scores
CVSS v3
7.5
EPSS
0.0039
EPSS Percentile
60.4%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (13)
xen/xen
4.5.0
xen/xen
4.5.1
xen/xen
4.5.2
xen/xen
4.5.3
xen/xen
4.5.5
xen/xen
4.6.0
xen/xen
4.6.1
xen/xen
4.6.2
xen/xen
4.6.4
xen/xen
4.6.5
... and 3 more
Published
Jul 05, 2017
Tracked Since
Feb 18, 2026