Risk | Low |
Patch available | YES |
Number of vulnerabilities | 3 |
CVE-ID | CVE-2017-8903 CVE-2017-8904 CVE-2017-8905 |
CWE-ID | CWE-264 CWE-20 |
Exploitation vector | Local |
Public exploit | N/A |
Vulnerable software Subscribe |
Gentoo app-emulation/xen-pvgrub Operating systems & Components / Operating system package or component Gentoo app-emulation/xen-tools Operating systems & Components / Operating system package or component Gentoo app-emulation/xen Operating systems & Components / Operating system package or component Gentoo Linux Operating systems & Components / Operating system |
Vendor | Gentoo |
Security Bulletin
This security bulletin contains information about 3 vulnerabilities.
EUVDB-ID: #VU6843
Risk: Low
CVSSv3.1: 5.2 [CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2017-8903
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to gain elevated privileges on the target system.
The weakness exists due to an error in the GNTTABOP_transfer operation. A local attacker can use a specially crafted IRET hypercall, gain write access to kernel page tables and execute arbitrary code on the host OS with elevated privileges.
Successful exploitation of the vulnerability results in privilege escalation.
Update the affected packages to version:
app-emulation/xen-4.7.2-r1
app-emulation/xen-tools-4.7.2
app-emulation/xen-pvgrub-4.7.2
Gentoo app-emulation/xen-pvgrub: 4.7.1
Gentoo app-emulation/xen-tools: 4.7.1
Gentoo app-emulation/xen: 4.7.1
Gentoo Linux: All versions
External linkshttp://security.gentoo.org/glsa/201705-11
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU6844
Risk: Low
CVSSv3.1: 5.2 [CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2017-8904
CWE-ID:
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to gain elevated privileges on the target system.
The weakness exists due to an error in the GNTTABOP_transfer operation. A local attacker can transfer a page to another guest, access all of the system memory and execute arbitrary code on the host OS with elevated privileges.
Successful exploitation of the vulnerability results in privilege escalation.
Update the affected packages to version:
app-emulation/xen-4.7.2-r1
app-emulation/xen-tools-4.7.2
app-emulation/xen-pvgrub-4.7.2
Gentoo app-emulation/xen-pvgrub: 4.7.1
Gentoo app-emulation/xen-tools: 4.7.1
Gentoo app-emulation/xen: 4.7.1
Gentoo Linux: All versions
External linkshttp://security.gentoo.org/glsa/201705-11
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU6845
Risk: Low
CVSSv3.1: 4.6 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID: CVE-2017-8905
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to gain elevated privileges on the target system.
The weakness exists due to insufficient validation of user-supplied input. A local attacker can use a failsafe callback to modify part of a physical memory page, execute arbitrary code on the host OS with elevated privileges.
Successful exploitation of the vulnerability may result in privilege escalation.
Update the affected packages to version:
app-emulation/xen-4.7.2-r1
app-emulation/xen-tools-4.7.2
app-emulation/xen-pvgrub-4.7.2
Gentoo app-emulation/xen-pvgrub: 4.7.1
Gentoo app-emulation/xen-tools: 4.7.1
Gentoo app-emulation/xen: 4.7.1
Gentoo Linux: All versions
External linkshttp://security.gentoo.org/glsa/201705-11
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.