Xen 'memory_exchange()' Function Incomplete Fix Privilege Escalation Vulnerability

Bugtraq ID: 97375
Class: Design Error
CVE: CVE-2017-7228
Remote: Yes
Local: No
Published: Apr 04 2017 12:00AM
Updated: Apr 18 2017 01:04AM
Credit: Jann Horn of Google Project Zero.
Vulnerable: Xen Xen 4.8
Xen Xen 4.7
Xen Xen 4.6
Xen Xen 4.6.3
Xen Xen 4.5.3
Xen Xen 4.5.0
Xen Xen 4.4.1
Xen Xen 4.4.0
SuSE Linux Enterprise Software Development Kit 12 SP2
SuSE Linux Enterprise Server 12-SP2
SuSE Linux Enterprise Desktop 12-SP2
Redhat Enterprise Linux 5
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus