CVE-2023-46839
MEDIUMXen - Unauthenticated PCI Device Assignment Flaw via Phantom Function Context Setup Failure
Title source: llmDescription
PCI devices can make use of a functionality called phantom functions, that when enabled allows the device to generate requests using the IDs of functions that are otherwise unpopulated. This allows a device to extend the number of outstanding requests. Such phantom functions need an IOMMU context setup, but failure to setup the context is not fatal when the device is assigned. Not failing device assignment when such failure happens can lead to the primary device being assigned to a guest, while some of the phantom functions are assigned to a different domain.
References (3)
Core 3
Core References
Patch, Vendor Advisory
https://xenbits.xenproject.org/xsa/advisory-449.html
Patch, Vendor Advisory
http://xenbits.xen.org/xsa/advisory-449.html
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/XLL6SQ6IKFYXLYWITYZCRV5IBRK5G35R/
Scores
CVSS v3
5.3
EPSS
0.0026
EPSS Percentile
49.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
Status
published
Products (2)
fedoraproject/fedora
39
xen/xen
Published
Mar 20, 2024
Tracked Since
Feb 18, 2026