What is the severity of CVE-2017-15596?

CVE-2017-15596 has been rated as a high severity vulnerability due to its potential to cause denial of service.

How do I fix CVE-2017-15596?

To fix CVE-2017-15596, it is recommended to upgrade to a patched version of Xen that addresses this vulnerability.

What versions of Xen are affected by CVE-2017-15596?

CVE-2017-15596 affects Xen version 4.4.x through 4.9.x.

What type of attack is possible with CVE-2017-15596?

CVE-2017-15596 allows ARM guest OS users to cause a denial of service by mismanaging locks.

Can CVE-2017-15596 be exploited remotely?

Yes, CVE-2017-15596 can potentially be exploited remotely if an attacker has access to an ARM guest in a vulnerable Xen environment.

Vulnerability/
CVE-2017-15596

medium

CWE

400

18/10/2017

4/11/2017

CVE-2017-15596

First published: Wed Oct 18 2017(Updated: )

An issue was discovered in Xen 4.4.x through 4.9.x allowing ARM guest OS users to cause a denial of service (prevent physical CPU usage) because of lock mishandling upon detection of an add-to-physmap error.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Xen xen-unstable	=4.4.0
Xen xen-unstable	=4.4.0-rc1
Xen xen-unstable	=4.4.0-rc2
Xen xen-unstable	=4.4.0-rc3
Xen xen-unstable	=4.4.0-rc4
Xen xen-unstable	=4.4.0-rc5
Xen xen-unstable	=4.4.0-rc6
Xen xen-unstable	=4.4.1
Xen xen-unstable	=4.4.1-rc1
Xen xen-unstable	=4.4.1-rc2
Xen xen-unstable	=4.4.2
Xen xen-unstable	=4.4.2-rc1
Xen xen-unstable	=4.4.2-rc2
Xen xen-unstable	=4.4.3
Xen xen-unstable	=4.4.3-rc1
Xen xen-unstable	=4.4.4
Xen xen-unstable	=4.5.0
Xen xen-unstable	=4.5.0-rc1
Xen xen-unstable	=4.5.0-rc2
Xen xen-unstable	=4.5.0-rc3
Xen xen-unstable	=4.5.0-rc4
Xen xen-unstable	=4.5.1
Xen xen-unstable	=4.5.1-rc1
Xen xen-unstable	=4.5.1-rc2
Xen xen-unstable	=4.5.2
Xen xen-unstable	=4.5.3
Xen xen-unstable	=4.5.4
Xen xen-unstable	=4.5.5
Xen xen-unstable	=4.6.0
Xen xen-unstable	=4.6.0-rc1
Xen xen-unstable	=4.6.0-rc2
Xen xen-unstable	=4.6.0-rc3
Xen xen-unstable	=4.6.0-rc4
Xen xen-unstable	=4.6.0-rc5
Xen xen-unstable	=4.6.1
Xen xen-unstable	=4.6.2
Xen xen-unstable	=4.6.3
Xen xen-unstable	=4.6.4
Xen xen-unstable	=4.6.5
Xen xen-unstable	=4.6.6
Xen xen-unstable	=4.7.0
Xen xen-unstable	=4.7.0-rc1
Xen xen-unstable	=4.7.0-rc2
Xen xen-unstable	=4.7.0-rc3
Xen xen-unstable	=4.7.0-rc4
Xen xen-unstable	=4.7.0-rc5
Xen xen-unstable	=4.7.0-rc6
Xen xen-unstable	=4.7.1
Xen xen-unstable	=4.7.2
Xen xen-unstable	=4.7.3
Xen xen-unstable	=4.8.0
Xen xen-unstable	=4.8.0-rc1
Xen xen-unstable	=4.8.0-rc2
Xen xen-unstable	=4.8.0-rc3
Xen xen-unstable	=4.8.0-rc4
Xen xen-unstable	=4.8.0-rc5
Xen xen-unstable	=4.8.0-rc6
Xen xen-unstable	=4.8.0-rc7
Xen xen-unstable	=4.8.0-rc8
Xen xen-unstable	=4.8.1
Xen xen-unstable	=4.8.2
Xen xen-unstable	=4.9.0
Xen xen-unstable	=4.9.0-rc1
Xen xen-unstable	=4.9.0-rc1.1
Xen xen-unstable	=4.9.0-rc1.2
Xen xen-unstable	=4.9.0-rc2
Xen xen-unstable	=4.9.0-rc3
Xen xen-unstable	=4.9.0-rc4
Xen xen-unstable	=4.9.0-rc5
Xen xen-unstable	=4.9.0-rc6
Xen xen-unstable	=4.9.0-rc7
Xen xen-unstable	=4.9.0-rc8
Xen xen-unstable	=4.9.0-rc9

Remedy

https://xenbits.xen.org/xsa/advisory-235.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-15596?
CVE-2017-15596 has been rated as a high severity vulnerability due to its potential to cause denial of service.
How do I fix CVE-2017-15596?
To fix CVE-2017-15596, it is recommended to upgrade to a patched version of Xen that addresses this vulnerability.
What versions of Xen are affected by CVE-2017-15596?
CVE-2017-15596 affects Xen version 4.4.x through 4.9.x.
What type of attack is possible with CVE-2017-15596?
CVE-2017-15596 allows ARM guest OS users to cause a denial of service by mismanaging locks.
Can CVE-2017-15596 be exploited remotely?
Yes, CVE-2017-15596 can potentially be exploited remotely if an attacker has access to an ARM guest in a vulnerable Xen environment.

agent/type
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/remedy
agent/weakness
agent/severity
agent/references
agent/author
agent/tags
agent/description
agent/event
collector/nvd-index
agent/software-canonical-lookup-request
vendor/xen
canonical/xen xen-unstable
version/xen xen-unstable/4.4.0
version/xen xen-unstable/4.4.0-rc1
version/xen xen-unstable/4.4.0-rc2
version/xen xen-unstable/4.4.0-rc3
version/xen xen-unstable/4.4.0-rc4
version/xen xen-unstable/4.4.0-rc5
version/xen xen-unstable/4.4.0-rc6
version/xen xen-unstable/4.4.1
version/xen xen-unstable/4.4.1-rc1
version/xen xen-unstable/4.4.1-rc2
version/xen xen-unstable/4.4.2
version/xen xen-unstable/4.4.2-rc1
version/xen xen-unstable/4.4.2-rc2
version/xen xen-unstable/4.4.3
version/xen xen-unstable/4.4.3-rc1
version/xen xen-unstable/4.4.4
version/xen xen-unstable/4.5.0
version/xen xen-unstable/4.5.0-rc1
version/xen xen-unstable/4.5.0-rc2
version/xen xen-unstable/4.5.0-rc3
version/xen xen-unstable/4.5.0-rc4
version/xen xen-unstable/4.5.1
version/xen xen-unstable/4.5.1-rc1
version/xen xen-unstable/4.5.1-rc2
version/xen xen-unstable/4.5.2
version/xen xen-unstable/4.5.3
version/xen xen-unstable/4.5.4
version/xen xen-unstable/4.5.5
version/xen xen-unstable/4.6.0
version/xen xen-unstable/4.6.0-rc1
version/xen xen-unstable/4.6.0-rc2
version/xen xen-unstable/4.6.0-rc3
version/xen xen-unstable/4.6.0-rc4
version/xen xen-unstable/4.6.0-rc5
version/xen xen-unstable/4.6.1
version/xen xen-unstable/4.6.2
version/xen xen-unstable/4.6.3
version/xen xen-unstable/4.6.4
version/xen xen-unstable/4.6.5
version/xen xen-unstable/4.6.6
version/xen xen-unstable/4.7.0
version/xen xen-unstable/4.7.0-rc1
version/xen xen-unstable/4.7.0-rc2
version/xen xen-unstable/4.7.0-rc3
version/xen xen-unstable/4.7.0-rc4
version/xen xen-unstable/4.7.0-rc5
version/xen xen-unstable/4.7.0-rc6
version/xen xen-unstable/4.7.1
version/xen xen-unstable/4.7.2
version/xen xen-unstable/4.7.3
version/xen xen-unstable/4.8.0
version/xen xen-unstable/4.8.0-rc1
version/xen xen-unstable/4.8.0-rc2
version/xen xen-unstable/4.8.0-rc3
version/xen xen-unstable/4.8.0-rc4
version/xen xen-unstable/4.8.0-rc5
version/xen xen-unstable/4.8.0-rc6
version/xen xen-unstable/4.8.0-rc7
version/xen xen-unstable/4.8.0-rc8
version/xen xen-unstable/4.8.1
version/xen xen-unstable/4.8.2
version/xen xen-unstable/4.9.0
version/xen xen-unstable/4.9.0-rc1
version/xen xen-unstable/4.9.0-rc1.1
version/xen xen-unstable/4.9.0-rc1.2
version/xen xen-unstable/4.9.0-rc2
version/xen xen-unstable/4.9.0-rc3
version/xen xen-unstable/4.9.0-rc4
version/xen xen-unstable/4.9.0-rc5
version/xen xen-unstable/4.9.0-rc6
version/xen xen-unstable/4.9.0-rc7
version/xen xen-unstable/4.9.0-rc8
version/xen xen-unstable/4.9.0-rc9