QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2021-26933

Back to search

CVE-2021-26933

Published: Feb 17, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

An issue was discovered in Xen 4.9 through 4.14.x. On Arm, a guest is allowed to control whether memory accesses are bypassing the cache. This means that Xen needs to ensure that all writes (such as the ones during scrubbing) have reached the memory before handing over the page to a guest. Unfortunately, the operation to clean the cache is happening before checking if the page was scrubbed. Therefore there is no guarantee when all the writes will reach the memory.

VendorProductVersions

n/a

n/a

affected
n/a

References

FEDORA-2021-4c819bf1ad
vendor-advisory
x_refsource_FEDORA
FEDORA-2021-47f53a940a
vendor-advisory
x_refsource_FEDORA
DSA-4888
vendor-advisory
x_refsource_DEBIAN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now