CVE-2017-12137

Published: Aug 24, 2017Modified: May 13, 2026

8.8

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Exploitability: 2.0 / Impact: 6.0

Source: NVD

Description

arch/x86/mm.c in Xen allows local PV guest OS users to gain host OS privileges via vectors related to map_grant_ref.

Affected (9)

Products: Xen: Xen · Citrix: Xenserver · Debian: Debian Linux

1 product

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Xen Xen	All versions

Configuration B

6 vulnerable

Vulnerable Software	Affected Versions
Citrix Xenserver	Version 6.0.2
Citrix Xenserver	Version 6.2.0
Citrix Xenserver	Version 6.5
Citrix Xenserver	Version 7.0
Citrix Xenserver	Version 7.1
Citrix Xenserver	Version 7.2

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 8.0
Debian Debian Linux	Version 9.0

Related CWEs

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (16)

http://www.debian.org/security/2017/dsa-3969

Source: cve@mitre.org

Third Party Advisory

http://www.openwall.com/lists/oss-security/2017/08/15/2

Source: cve@mitre.org

Mailing ListMitigationPatchThird Party Advisory

http://www.securityfocus.com/bid/100342

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1039174

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://xenbits.xen.org/xsa/advisory-227.html

Source: cve@mitre.org

PatchVendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1477657

Source: cve@mitre.org

Issue TrackingPatchThird Party Advisory

https://security.gentoo.org/glsa/201801-14

Source: cve@mitre.org

Third Party Advisory

https://support.citrix.com/article/CTX225941

Source: cve@mitre.org

PatchThird Party Advisory

http://www.debian.org/security/2017/dsa-3969

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://www.openwall.com/lists/oss-security/2017/08/15/2

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListMitigationPatchThird Party Advisory

http://www.securityfocus.com/bid/100342

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1039174

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://xenbits.xen.org/xsa/advisory-227.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1477657

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingPatchThird Party Advisory

https://security.gentoo.org/glsa/201801-14

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://support.citrix.com/article/CTX225941

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

Timeline

No history available yet.