Candidate: CVE-2019-18422
CRD: 2019-10-31 12:00:00 UTC
PublicDate: 2019-10-31 14:15:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18422
Description:
 An issue was discovered in Xen through 4.12.x allowing ARM guest OS users
 to cause a denial of service or gain privileges by leveraging the erroneous
 enabling of interrupts. Interrupts are unconditionally unmasked in
 exception handlers. When an exception occurs on an ARM system which is
 handled without changing processor level, some interrupts are
 unconditionally enabled during exception entry. So exceptions which occur
 when interrupts are masked will effectively unmask the interrupts. A
 malicious guest might contrive to arrange for critical Xen code to run with
 interrupts erroneously enabled. This could lead to data corruption, denial
 of service, or possibly even privilege escalation. However a precise attack
 technique has not been identified.
Ubuntu-Description: 
Notes: 
 mdeslaur| hypervisor packages are in universe
 amurray| This issue is specific only to ARM platforms - x86 systems are not
  affected
Mitigation: 
Bugs: 
Priority: medium
Discovered-by:
Assigned-to: 
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H [8.8 HIGH]

Patches_xen:
Tags_xen: universe-binary
upstream_xen: needs-triage
precise/esm_xen: DNE
trusty_xen: ignored (out of standard support)
trusty/esm_xen: DNE
xenial_xen: ignored (end of standard support, was needs-triage)
esm-infra/xenial_xen: needs-triage
bionic_xen: needs-triage
disco_xen: ignored (reached end-of-life)
eoan_xen: ignored (reached end-of-life)
focal_xen: not-affected (4.11.3+24-g14b62ab3e5-1ubuntu1)
groovy_xen: not-affected (4.11.3+24-g14b62ab3e5-1ubuntu1)
hirsute_xen: not-affected (4.11.3+24-g14b62ab3e5-1ubuntu1)
impish_xen: not-affected (4.11.3+24-g14b62ab3e5-1ubuntu1)
jammy_xen: not-affected (4.11.3+24-g14b62ab3e5-1ubuntu1)
devel_xen: not-affected (4.11.3+24-g14b62ab3e5-1ubuntu1)