CVE-2020-11740

MEDIUM

Xen <4.13.x - Info Disclosure

Title source: llm

Description

An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (without active profiling) to obtain sensitive information about other guests. Unprivileged guests can request to map xenoprof buffers, even if profiling has not been enabled for those guests. These buffers were not scrubbed.

References (9)

[Patch, Vendor Advisory] https://xenbits.xen.org/xsa/advisory-313.html

[Patch, Vendor Advisory] http://xenbits.xen.org/xsa/advisory-313.html

[Mailing List, Patch, Third Party Advisory] http://www.openwall.com/lists/oss-security/2020/04/14/1

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YMAW7D2MP6RE4BFI5BZWOBBWGY3VSOFN/

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5M2XRNCHOGGTJQBZQJ7DCV6ZNAKN3LE2/

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00006.html

[Mailing List, Third Party Advisory] https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVTP4OYHCTRU3ONFJOFJQVNDFB25KLLG/

[Third Party Advisory] https://security.gentoo.org/glsa/202005-08

[Third Party Advisory] https://www.debian.org/security/2020/dsa-4723

Scores

CVSS v3 5.5

EPSS 0.0009

EPSS Percentile 25.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-212

Status published

Products (7)

debian/debian_linux 10.0

fedoraproject/fedora 30

fedoraproject/fedora 31

fedoraproject/fedora 32

opensuse/leap 15.1

xen/xen 4.13.0 rc1 (2 CPE variants)

xen/xen 3.2.0 - 4.13.0

Published Apr 14, 2020

Tracked Since Feb 18, 2026