VDB
CVE-2017-14319
CVE-2017-14319
PUBLISHED
A grant unmapping issue was discovered in Xen through 4.9.x. When removing or replacing a grant mapping, the x86 PV specific path needs to make sure page table entries remain in sync with other accounting done. Although the identity of the page frame was validated correctly, neither the presence of the mapping nor page writability were taken into account.
EPSS 0.04% · 12.0th percentile
Risk Scores
EPSS Score
0.04%
12.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:14.04:LTS | xen | 4.3.0-1ubuntu5, 4.4.1-0ubuntu0.14.04.6, 4.4.2-0ubuntu0.14.04.2 |
| Ubuntu:16.04:LTS | xen | 4.5.1-0ubuntu2, 4.6.0-1ubuntu2, 4.6.0-1ubuntu4 |
Timeline
- Sep 12, 2017 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 22, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 25, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 27, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 2, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Nov 5, 2022 EPSS Score
- Jan 7, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2017-14319 third-party-advisory
- https://xenbits.xen.org/xsa/advisory-234.html third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2017-14319 third-party-advisory