CVE-2020-27674
First published: Thu Oct 22 2020(Updated: )
An issue was discovered in Xen through 4.14.x allowing x86 PV guest OS users to gain guest OS privileges by modifying kernel memory contents, because invalidation of TLB entries is mishandled during use of an INVLPG-like attack technique.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/xen | 4.11.4+107-gef32c7afa2-1 4.14.6-1 4.14.5+94-ge49571868d-1 4.17.1+2-gb773c48e36-1 4.17.2+55-g0b56bed864-1 | |
| Xen XAPI | <=4.14.0 | |
| Fedora | =31 | |
| Fedora | =32 | |
| Fedora | =33 | |
| Debian | =10.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://xenbits.xen.org/xsa/advisory-286.html
- https://security-tracker.debian.org/tracker/CVE-2020-27674
- http://www.openwall.com/lists/oss-security/2021/01/19/5
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PZAM3LYJ5TZLSSNL3KXFILM46QKVTOUA/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U3U4LNKKXU4UP4Z5XP6TMIWSML3QODPE/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XIK57QJOVOPWH6RFRNMGOBCROBCKMDG2/
- https://security.gentoo.org/glsa/202011-06
- https://www.debian.org/security/2020/dsa-4804
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U3U4LNKKXU4UP4Z5XP6TMIWSML3QODPE/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PZAM3LYJ5TZLSSNL3KXFILM46QKVTOUA/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XIK57QJOVOPWH6RFRNMGOBCROBCKMDG2/
Frequently Asked Questions
What is the severity of CVE-2020-27674?
CVE-2020-27674 is classified as a high severity vulnerability due to its potential impact on guest OS privilege escalation.
How can CVE-2020-27674 be mitigated?
Mitigation for CVE-2020-27674 involves upgrading to a patched version of Xen that addresses this vulnerability.
Which versions of Xen are affected by CVE-2020-27674?
CVE-2020-27674 affects Xen versions up to and including 4.14.x.
What types of systems are vulnerable to CVE-2020-27674?
CVE-2020-27674 affects x86 PV guest operating systems running on vulnerable Xen hypervisors.
What attack vector is exploited in CVE-2020-27674?
CVE-2020-27674 can be exploited through an INVLPG-like attack technique that modifies kernel memory contents.
- collector/security-tracker-debian
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/remedy
- agent/references
- agent/author
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/debian
- vendor/xen
- canonical/xen xapi
- version/xen xapi/4.14.0
- vendor/fedoraproject
- canonical/fedora
- version/fedora/31
- version/fedora/32
- version/fedora/33
- vendor/debian
- canonical/debian
- version/debian/10.0