CVE-2024-31142

Published: May 16, 2024Modified: Jan 5, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.6 / Impact: 5.9

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

Because of a logical error in XSA-407 (Branch Type Confusion), the mitigation is not applied properly when it is intended to be used. XSA-434 (Speculative Return Stack Overflow) uses the same infrastructure, so is equally impacted. For more details, see: https://xenbits.xen.org/xsa/advisory-407.html https://xenbits.xen.org/xsa/advisory-434.html

Affected (6)

Products: Xen: Xen · Fedoraproject: Fedora

1 product

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Xen Xen	Before 4.15.6
Xen Xen	From 4.16.0 to 4.16.6
Xen Xen	From 4.17.0 to 4.17.4
Xen Xen	From 4.18.0 to 4.18.2

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 38
Fedoraproject Fedora	Version 40

Related CWEs

Protection Mechanism Failure

The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.

References (5)

https://xenbits.xenproject.org/xsa/advisory-455.html

Source: security@xen.org

PatchVendor Advisory

http://xenbits.xen.org/xsa/advisory-455.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D5OK6MH75S7YWD34EWW7QIZTS627RIE3/

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RYAZ7P6YFJ2E3FHKAGIKHWS46KYMMTZH/

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://xenbits.xenproject.org/xsa/advisory-455.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.