CVE-2023-46837

Published: Jan 5, 2024

Modified: Nov 4, 2025

PUBLISHED

Description

Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes (such as the ones during scrubbing) have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the helpers can overflow and would then result to skip the cache cleaning/invalidation. Therefore there is no guarantee when all the writes will reach the memory. This undefined behavior was meant to be addressed by XSA-437, but the approach was not sufficient.

Vendor	Product	Versions
Xen	Xen	unknown `consult Xen advisory XSA-447`

References

https://xenbits.xenproject.org/xsa/advisory-447.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/XLL6SQ6IKFYXLYWITYZCRV5IBRK5G35R/

https://lists.fedoraproject.org/archives/list/[email protected]/message/JFVKWYQFRUU3CAS53THTUKXEOUDWI42G/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-46837

Description

Affected Products

References