xen: Multiple vulnerabilitie (CVE-2018-7540, CVE-2018-7541, CVE-2018-7542)
CVE-2018-7540, XSA-252: DoS via non-preemptable L3/L4 pagetable freeing
All Xen versions are vulnerable.
Reference:
http://xenbits.xen.org/xsa/advisory-252.html
CVE-2018-7541, XSA-255: grant table v2 ->v1 transition may crash Xen
Xen versions 4.0 and newer are vulnerable.
Reference:
http://xenbits.xen.org/xsa/advisory-255.html
CVE-2018-7542, XSA-256: x86 PVH guest without LAPIC may DoS the host
Xen version 4.8 and onwards are vulnerable.
Reference:
http://xenbits.xen.org/xsa/advisory-256.html
(from redmine: issue id 8612, created on 2018-03-06, closed on 2018-03-19)
- Relations:
- copied_to #8613 (closed)
- copied_to #8614 (closed)
- copied_to #8615 (closed)
- copied_to #8616 (closed)
- copied_to #8617 (closed)
- child #8613 (closed)
- child #8614 (closed)
- child #8615 (closed)
- child #8616 (closed)
- child #8617 (closed)