Back to search
CVE-2017-14317
Published: Sep 12, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
A domain cleanup issue was discovered in the C xenstore daemon (aka cxenstored) in Xen through 4.9.x. When shutting down a VM with a stubdomain, a race in cxenstored may cause a double-free. The xenstored daemon may crash, resulting in a DoS of any parts of the system relying on it (including domain creation / destruction, ballooning, device changes, etc.).
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1039350
vdb-entry
x_refsource_SECTRACK
http://xenbits.xen.org/xsa/advisory-233.html
x_refsource_CONFIRM
DSA-4050
vendor-advisory
x_refsource_DEBIAN
[debian-lts-announce] 20181018 [SECURITY] [DLA 1549-1] xen security update
mailing-list
x_refsource_MLIST
100826
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now