CVE-2023-34321: arm32: The cache may not be properly cleaned/invalidated
First published: Tue Sep 05 2023(Updated: )
Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes (such as the ones during scrubbing) have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the helpers can overflow and would then result to skip the cache cleaning/invalidation. Therefore there is no guarantee when all the writes will reach the memory.
Credit: security@xen.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Xen xen-unstable | <=4.16 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-34321?
The severity of CVE-2023-34321 is classified as moderate.
How do I fix CVE-2023-34321?
To fix CVE-2023-34321, update to a fixed version of Xen that addresses the vulnerability.
What software is affected by CVE-2023-34321?
CVE-2023-34321 affects Xen versions up to and including 4.16.
What types of attacks can exploit CVE-2023-34321?
CVE-2023-34321 can potentially be exploited through guest memory allocation attacks.
Is CVE-2023-34321 specific to any architecture?
Yes, CVE-2023-34321 is specifically related to the x86 architecture.
- collector/oss-sec
- alias/CVE-2023-34321
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/remedy
- agent/severity
- agent/title
- agent/weakness
- agent/author
- agent/references
- agent/softwarecombine
- agent/description
- agent/trending
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/xen
- canonical/xen xen-unstable
- version/xen xen-unstable/4.16