Candidate: CVE-2017-14319
PublicDate: 2017-09-12 15:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14319
 https://xenbits.xen.org/xsa/advisory-234.html
Description:
 A grant unmapping issue was discovered in Xen through 4.9.x. When removing
 or replacing a grant mapping, the x86 PV specific path needs to make sure
 page table entries remain in sync with other accounting done. Although the
 identity of the page frame was validated correctly, neither the presence of
 the mapping nor page writability were taken into account.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: Andrew Cooper
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H [8.8 HIGH]

Patches_xen:
Tags_xen: universe-binary
upstream_xen: needs-triage
precise/esm_xen: DNE
trusty_xen: released (4.4.2-0ubuntu0.14.04.14)
trusty/esm_xen: DNE (trusty was released [4.4.2-0ubuntu0.14.04.14])
vivid/ubuntu-core_xen: DNE
xenial_xen: released (4.6.5-0ubuntu1.4)
esm-infra/xenial_xen: released (4.6.5-0ubuntu1.4)
zesty_xen: released (4.8.0-1ubuntu2.4)
devel_xen: released (4.9.0-0ubuntu3)