Xen Information Disclosure Vulnerability: CVE-2017-17046
Description: An issue was discovered in Xen through 4.9.x on the ARM platform allowing guest OS users to obtain sensitive information from DRAM after a reboot, because disjoint blocks, and physical addresses that do not start at zero, are mishandled.
Impact: Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks.
Mitigation: Updates are available. Please see the references or vendor advisory for more information.
Reference URL’s:
- http://xenbits.xenproject.org/xsa/advisory-245.html
- http://www.securityfocus.com/bid/101067/info
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17046
Recommended Posts
Press release April 2023: Situational Security Alerts from CIRT
21 Apr 2023 - Articles, English articles, News, Notice, Security Advisories & Alerts

Security Best Practices
29 Mar 2023 - Security Advisories & Alerts