VDB
ALPINE-CVE-2024-45819
ALPINE-CVE-2024-45819
PUBLISHED
CVSS 5.5 MEDIUM
PVH guests have their ACPI tables constructed by the toolstack. The construction involves building the tables in local memory, which are then copied into guest memory. While actually used parts of the local memory are filled in correctly, excess space that is being allocated is left with its prior contents.
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.23 | xen | 0, 4.8.0, 4.9.1-r3 |
| Alpine:v3.18 | xen | 4.3.2-r1, 0, 4.0.1-r1 |
| Alpine:v3.24 | xen | 4.8.0 |
| Alpine:v3.21 | xen | 4.16.1-r5, 4.16.1-r2, 4.16.1-r1 |
| Alpine:v3.22 | xen | 4.10.0-r0, 4.10.1-r1, 0 |
| Alpine:v3.17 | xen | 0, 4.8.0, 4.9.1-r3 |
| Alpine:v3.20 | xen | 4.3.1-r1, 4.8.0, 4.9.1-r3 |
| Alpine:v3.19 | xen | 4.11.0-r1, 4.11.1-r0, 4.11.1-r1 |
Timeline
- Dec 19, 2024 CVE Published
- Apr 30, 2026 Distribution Patch
- Jul 8, 2026 CVE Updated