Back to search
CVE-2018-19965
Published: Dec 8, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
An issue was discovered in Xen through 4.11.x allowing 64-bit PV guest OS users to cause a denial of service (host OS crash) because #GP[0] can occur after a non-canonical address is passed to the TLB flushing code. NOTE: this issue exists because of an incorrect CVE-2017-5754 (aka Meltdown) mitigation.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://support.citrix.com/article/CTX239432
x_refsource_CONFIRM
https://xenbits.xen.org/xsa/advisory-279.html
x_refsource_MISC
DSA-4369
vendor-advisory
x_refsource_DEBIAN
106182
vdb-entry
x_refsource_BID
FEDORA-2019-bce6498890
vendor-advisory
x_refsource_FEDORA
openSUSE-SU-2019:1226
vendor-advisory
x_refsource_SUSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now