CVE-2018-19967

CVE-2018-19967

Name

CVE-2018-19967

Description

An issue was discovered in Xen through 4.11.x on Intel x86 platforms allowing guest OS users to cause a denial of service (host OS hang) because Xen does not work around Intel's mishandling of certain HLE transactions associated with the KACQUIRE instruction prefix.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Patch	https://xenbits.xen.org/xsa/advisory-282.html
Third Party Advisory	http://www.securityfocus.com/bid/106182
Third Party Advisory	https://support.citrix.com/article/CTX239432
Third Party Advisory	https://www.debian.org/security/2019/dsa-4369
SUSE	http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00057.html
SUSE	http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html

Type

URI

Patch

https://xenbits.xen.org/xsa/advisory-282.html

Third Party Advisory

http://www.securityfocus.com/bid/106182

Third Party Advisory

https://support.citrix.com/article/CTX239432

Third Party Advisory

https://www.debian.org/security/2019/dsa-4369

SUSE

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00057.html

SUSE

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html

CPE URI	Source package	Min version	Max version
`cpe:2.3:o:xen:xen:::::::x86:*`	xen	>= None	<= 4.11.1

CPE URI

Source package

Min version

Max version

cpe:2.3:o:xen:xen:*:*:*:*:*:*:x86:*

xen

>= None

<= 4.11.1

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
xen	edge-main	4.11.1-r0	None	fixed
xen	edge-main	4.11.0-r0	None	possibly vulnerable
xen	edge-main	4.10.1-r1	None	possibly vulnerable
xen	edge-main	4.10.1-r0	None	possibly vulnerable
xen	edge-main	4.10.0-r2	None	possibly vulnerable
xen	edge-main	4.10.0-r1	None	possibly vulnerable
xen	edge-main	4.10-1-r1	None	possibly vulnerable
xen	edge-main	4.9.1-r1	None	possibly vulnerable
xen	edge-main	4.9.0-r7	None	possibly vulnerable
xen	edge-main	4.9.0-r6	None	possibly vulnerable
xen	edge-main	4.9.0-r5	None	possibly vulnerable
xen	edge-main	4.9.0-r4	None	possibly vulnerable
xen	edge-main	4.9.0-r2	None	possibly vulnerable
xen	edge-main	4.9.0-r1	None	possibly vulnerable
xen	edge-main	4.9.0-r0	None	possibly vulnerable
xen	edge-main	4.8.1-r2	None	possibly vulnerable
xen	edge-main	4.7.2-r0	None	possibly vulnerable
xen	edge-main	4.7.1-r5	None	possibly vulnerable
xen	edge-main	4.7.1-r4	None	possibly vulnerable
xen	edge-main	4.7.1-r3	None	possibly vulnerable
xen	edge-main	4.7.1-r1	None	possibly vulnerable
xen	edge-main	4.7.0-r5	None	possibly vulnerable
xen	edge-main	4.7.0-r1	None	possibly vulnerable
xen	edge-main	4.7.0-r0	None	possibly vulnerable
xen	3.22-main	4.11.1-r0	None	fixed
xen	3.22-main	4.11.0-r0	None	possibly vulnerable
xen	3.22-main	4.10.1-r1	None	possibly vulnerable
xen	3.22-main	4.10.1-r0	None	possibly vulnerable
xen	3.22-main	4.10.0-r2	None	possibly vulnerable
xen	3.22-main	4.10.0-r1	None	possibly vulnerable
xen	3.22-main	4.9.1-r1	None	possibly vulnerable
xen	3.22-main	4.9.0-r7	None	possibly vulnerable
xen	3.22-main	4.9.0-r6	None	possibly vulnerable
xen	3.22-main	4.9.0-r5	None	possibly vulnerable
xen	3.22-main	4.9.0-r4	None	possibly vulnerable
xen	3.22-main	4.9.0-r2	None	possibly vulnerable
xen	3.22-main	4.9.0-r1	None	possibly vulnerable
xen	3.22-main	4.9.0-r0	None	possibly vulnerable
xen	3.22-main	4.8.1-r2	None	possibly vulnerable
xen	3.22-main	4.7.2-r0	None	possibly vulnerable
xen	3.22-main	4.7.1-r5	None	possibly vulnerable
xen	3.22-main	4.7.1-r4	None	possibly vulnerable
xen	3.22-main	4.7.1-r3	None	possibly vulnerable
xen	3.22-main	4.7.1-r1	None	possibly vulnerable
xen	3.22-main	4.7.0-r5	None	possibly vulnerable
xen	3.22-main	4.7.0-r1	None	possibly vulnerable
xen	3.22-main	4.7.0-r0	None	possibly vulnerable
xen	3.21-main	4.11.1-r0	None	fixed
xen	3.21-main	4.11.0-r0	None	possibly vulnerable
xen	3.21-main	4.10.1-r1	None	possibly vulnerable
xen	3.21-main	4.10.1-r0	None	possibly vulnerable
xen	3.21-main	4.10.0-r2	None	possibly vulnerable
xen	3.21-main	4.10.0-r1	None	possibly vulnerable
xen	3.21-main	4.9.1-r1	None	possibly vulnerable
xen	3.21-main	4.9.0-r7	None	possibly vulnerable
xen	3.21-main	4.9.0-r6	None	possibly vulnerable
xen	3.21-main	4.9.0-r5	None	possibly vulnerable
xen	3.21-main	4.9.0-r4	None	possibly vulnerable
xen	3.21-main	4.9.0-r2	None	possibly vulnerable
xen	3.21-main	4.9.0-r1	None	possibly vulnerable
xen	3.21-main	4.9.0-r0	None	possibly vulnerable
xen	3.21-main	4.8.1-r2	None	possibly vulnerable
xen	3.21-main	4.7.2-r0	None	possibly vulnerable
xen	3.21-main	4.7.1-r5	None	possibly vulnerable
xen	3.21-main	4.7.1-r4	None	possibly vulnerable
xen	3.21-main	4.7.1-r3	None	possibly vulnerable
xen	3.21-main	4.7.1-r1	None	possibly vulnerable
xen	3.21-main	4.7.0-r5	None	possibly vulnerable
xen	3.21-main	4.7.0-r1	None	possibly vulnerable
xen	3.21-main	4.7.0-r0	None	possibly vulnerable
xen	3.20-main	4.11.1-r0	None	fixed
xen	3.20-main	4.11.0-r0	None	possibly vulnerable
xen	3.20-main	4.10.1-r1	None	possibly vulnerable
xen	3.20-main	4.10.1-r0	None	possibly vulnerable
xen	3.20-main	4.10.0-r2	None	possibly vulnerable
xen	3.20-main	4.10.0-r1	None	possibly vulnerable
xen	3.20-main	4.9.1-r1	None	possibly vulnerable
xen	3.20-main	4.9.0-r7	None	possibly vulnerable
xen	3.20-main	4.9.0-r6	None	possibly vulnerable
xen	3.20-main	4.9.0-r5	None	possibly vulnerable
xen	3.20-main	4.9.0-r4	None	possibly vulnerable
xen	3.20-main	4.9.0-r2	None	possibly vulnerable
xen	3.20-main	4.9.0-r1	None	possibly vulnerable
xen	3.20-main	4.9.0-r0	None	possibly vulnerable
xen	3.20-main	4.8.1-r2	None	possibly vulnerable
xen	3.20-main	4.7.2-r0	None	possibly vulnerable
xen	3.20-main	4.7.1-r5	None	possibly vulnerable
xen	3.20-main	4.7.1-r4	None	possibly vulnerable
xen	3.20-main	4.7.1-r3	None	possibly vulnerable
xen	3.20-main	4.7.1-r1	None	possibly vulnerable
xen	3.20-main	4.7.0-r5	None	possibly vulnerable
xen	3.20-main	4.7.0-r1	None	possibly vulnerable
xen	3.20-main	4.7.0-r0	None	possibly vulnerable
xen	3.19-main	4.11.1-r0	None	fixed
xen	3.19-main	4.11.0-r0	None	possibly vulnerable
xen	3.19-main	4.10.1-r1	None	possibly vulnerable
xen	3.19-main	4.10.1-r0	None	possibly vulnerable
xen	3.19-main	4.10.0-r2	None	possibly vulnerable
xen	3.19-main	4.10.0-r1	None	possibly vulnerable
xen	3.19-main	4.9.1-r1	None	possibly vulnerable
xen	3.19-main	4.9.0-r7	None	possibly vulnerable
xen	3.19-main	4.9.0-r6	None	possibly vulnerable
xen	3.19-main	4.9.0-r5	None	possibly vulnerable
xen	3.19-main	4.9.0-r4	None	possibly vulnerable
xen	3.19-main	4.9.0-r2	None	possibly vulnerable
xen	3.19-main	4.9.0-r1	None	possibly vulnerable
xen	3.19-main	4.9.0-r0	None	possibly vulnerable
xen	3.19-main	4.8.1-r2	None	possibly vulnerable
xen	3.19-main	4.7.2-r0	None	possibly vulnerable
xen	3.19-main	4.7.1-r5	None	possibly vulnerable
xen	3.19-main	4.7.1-r4	None	possibly vulnerable
xen	3.19-main	4.7.1-r3	None	possibly vulnerable
xen	3.19-main	4.7.1-r1	None	possibly vulnerable
xen	3.19-main	4.7.0-r5	None	possibly vulnerable
xen	3.19-main	4.7.0-r1	None	possibly vulnerable
xen	3.19-main	4.7.0-r0	None	possibly vulnerable
xen	3.18-main	4.11.1-r0	None	fixed
xen	3.17-main	4.11.1-r0	None	fixed
xen	3.12-main	4.11.1-r0	None	fixed
xen	3.11-main	4.11.1-r0	None	fixed
xen	3.10-main	4.11.1-r0	None	fixed

Source package

Branch

Version

Maintainer

Status

References

Match rules

Vulnerable and fixed packages