CVE-2019-19582

Published: Dic 11, 2019 Last Modified: Nov 21, 2024 EU-VD ID: EUVD-2019-9199 Aliases: GSD-2019-19582
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 6,5
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: changed
Confidentiality: none
Integrity: none
Availability: high
LOW 2,1
Source: [email protected]
Access Vector: local
Access Complexity: low
Authentication: none
Confidentiality: none
Integrity: none
Availability: partial

Description

AI Translation Available

An issue was discovered in Xen through 4.12.x allowing x86 guest OS users to cause a denial of service (infinite loop) because certain bit iteration is mishandled. In a number of places bitmaps are being used by the hypervisor to track certain state. Iteration over all bits involves functions which may misbehave in certain corner cases: On x86 accesses to bitmaps with a compile time known size of 64 may incur undefined behavior, which may in particular result in infinite loops. A malicious guest may cause a hypervisor crash or hang, resulting in a Denial of Service (DoS). All versions of Xen are vulnerable. x86 systems with 64 or more nodes are vulnerable (there might not be any such systems that Xen would run on). x86 systems with less than 64 nodes are not vulnerable.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0011
Percentile
0,3th
Updated

EPSS Score Trend (Last 91 Days)

835

Loop with Unreachable Exit Condition ('Infinite Loop')

Incomplete
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Availability
Potential Impacts:
Dos: Resource Consumption (Cpu) Dos: Resource Consumption (Memory) Dos: Amplification
Applicable Platforms
All platforms may be affected
View CWE Details
Operating System

Fedora by Fedoraproject

Product Information
Vendor Fedoraproject
Product Fedora
Version 31
cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Xen by Xen

Product Information
Vendor Xen
Product Xen
Version Range Affected
From 4.8.0 (inclusive)
To 4.12.1 (inclusive)
cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
http://lists.opensuse.org/opensuse-security-announce/2020-0…
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00011.html
https://lists.fedoraproject.org/archives/list/package-annou…
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapr…
https://lists.fedoraproject.org/archives/list/package-annou…
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapr…
https://seclists.org/bugtraq/2020/Jan/21
https://seclists.org/bugtraq/2020/Jan/21
https://security.gentoo.org/glsa/202003-56
https://security.gentoo.org/glsa/202003-56
https://www.debian.org/security/2020/dsa-4602
https://www.debian.org/security/2020/dsa-4602
https://xenbits.xen.org/xsa/advisory-307.html
Patch Vendor Advisory
https://xenbits.xen.org/xsa/advisory-307.html
http://lists.opensuse.org/opensuse-security-announce/2020-0…
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00011.html
https://lists.fedoraproject.org/archives/list/package-annou…
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapr…
https://lists.fedoraproject.org/archives/list/package-annou…
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapr…
https://seclists.org/bugtraq/2020/Jan/21
https://seclists.org/bugtraq/2020/Jan/21
https://security.gentoo.org/glsa/202003-56
https://security.gentoo.org/glsa/202003-56
https://www.debian.org/security/2020/dsa-4602
https://www.debian.org/security/2020/dsa-4602
https://xenbits.xen.org/xsa/advisory-307.html
Patch Vendor Advisory
https://xenbits.xen.org/xsa/advisory-307.html