Xen ‘xen/common/grant_table.c’ Denial of Service Vulnerability (CVE-2018-7541)

by CIRT Team

Description: An issue was discovered in Xen through 4.10.x allowing guest OS users to cause a denial of service (hypervisor crash) or gain privileges by triggering a grant-table transition from v2 to v1.

Impact: An attacker can exploit this issue to crash the host, denying service to legitimate users.

Xen 4.0 and later are vulnerable.

Mitigation: Updates are available. Please see the references or vendor advisory for more information.

Reference URL’s:

• http://seclists.org/oss-sec/2018/q1/193
• http://xenbits.xenproject.org/xsa/advisory-255.html
• http://xenbits.xenproject.org/xsa/advisory-255.txt
• https://support.citrix.com/article/CTX232655
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7541
• https://www.securityfocus.com/bid/103177/info

CIRT Team

Recommended Posts

Cyber Threat Alert: Surge in Attacks via Compromised Third-Party Service Providers

08 Feb 2024 - Articles, English articles, Security Advisories & Alerts

বাংলাদেশের আইটি কাঠামোয় তথ্য চুরির ম্যালওয়ারের বিস্তার সম্পর্কে সতর্কতা

18 Jan 2024 - Articles, Bangla Articles, News, Security Advisories & Alerts

সাইবার থ্রেট এলার্টঃ বাংলাদেশকে লক্ষ্য করে চলমান ফিশিং ক্যাম্পেইন

04 Jan 2024 - News, Security Advisories & Alerts