Home

CVE-2021-28712

Description

Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen offers the ability to run PV backends in regular unprivileged guests, typically referred to as driver domains. Running PV backends in driver domains has one primary security advantage: if a driver domain gets compromised, it doesnt have the privileges to take over the system. However, a malicious driver domain could try to attack other guests via sending events at a high frequency leading to a Denial of Service in the guest due to trying to service interrupts for elongated amounts of time. There are three affected backends: * blkfront patch 1, CVE-2021-28711 * netfront patch 2, CVE-2021-28712 * hvc_xen (console) patch 3, CVE-2021-28713

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.042

Associated Vulnerability

VulnerabilityOS Platform
SUSE-SU-2022:0068-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-4.12.14-122.106.1.x86_64.rpmLinux
SUSE-SU-2022:0068-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-4.12.14-122.106.1.x86_64.rpmLinux
SUSE-SU-2022:0068-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-debuginfo-4.12.14-122.106.1.x86_64.rpmLinux
SUSE-SU-2022:0068-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debuginfo-4.12.14-122.106.1.x86_64.rpmLinux
SUSE-SU-2022:0068-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debugsource-4.12.14-122.106.1.x86_64.rpmLinux
SUSE-SU-2022:0068-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-4.12.14-122.106.1.x86_64.rpmLinux
SUSE-SU-2022:0068-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-debuginfo-4.12.14-122.106.1.x86_64.rpmLinux
SUSE-SU-2022:0068-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-4.12.14-122.106.1.noarch.rpmLinux
SUSE-SU-2022:0068-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-macros-4.12.14-122.106.1.noarch.rpmLinux
SUSE-SU-2022:0068-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-4.12.14-122.106.1.noarch.rpmLinux
SUSE-SU-2022:0068-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-4.12.14-122.106.1.x86_64.rpmLinux
Linux kernel (USN-5298-1) linux-image-kvm_4.15.0.1107.103_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-generic_4.15.0.169.158_i386.debLinux
Linux kernel (USN-5298-1) linux-image-generic_4.15.0.169.158_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-virtual_4.15.0.169.158_i386.debLinux
Linux kernel (USN-5298-1) linux-image-virtual_4.15.0.169.158_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-dell300x_4.15.0.1035.37_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-lowlatency_4.15.0.169.158_i386.debLinux
Linux kernel (USN-5298-1) linux-image-lowlatency_4.15.0.169.158_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-aws-lts-18.04_4.15.0.1121.124_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-gcp-lts-18.04_4.15.0.1116.135_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-4.15.0-1107-kvm_4.15.0-1107.109_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-4.15.0-1116-gcp_4.15.0-1116.130_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-azure-lts-18.04_4.15.0.1131.104_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-oracle-lts-18.04_4.15.0.1087.97_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-4.15.0-1131-azure_4.15.0-1131.144_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-4.15.0-1087-oracle_4.15.0-1087.95_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-4.15.0-169-generic_4.15.0-169.177_i386.debLinux
Linux kernel (USN-5298-1) linux-image-4.15.0-169-generic_4.15.0-169.177_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-4.15.0-1035-dell300x_4.15.0-1035.40_amd64.debLinux
Linux kernel (USN-5298-1) linux-image-4.15.0-169-lowlatency_4.15.0-169.177_i386.debLinux
Linux kernel (USN-5298-1) linux-image-4.15.0-169-lowlatency_4.15.0-169.177_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-aws_5.13.0.1019.20_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-aws_5.13.0.1022.24~20.04.15_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-gcp_5.13.0.1021.19_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-gke_5.13.0.1021.19_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-kvm_5.13.0.1018.18_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-generic_5.13.0.37.46_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-virtual_5.13.0.37.46_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-oem-20.04_5.13.0.37.46_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-lowlatency_5.13.0.37.46_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-5.13.0-1018-kvm_5.13.0-1018.19_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-5.13.0-1019-aws_5.13.0-1019.21_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-5.13.0-1019-aws_5.13.0-1019.21~20.04.1_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-5.13.0-1021-gcp_5.13.0-1021.25_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-5.13.0-37-generic_5.13.0-37.42_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-5.13.0-37-generic_5.13.0-37.42~20.04.1_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-generic-hwe-20.04_5.13.0.37.42~20.04.22_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-virtual-hwe-20.04_5.13.0.37.42~20.04.22_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-5.13.0-37-lowlatency_5.13.0-37.42_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-5.13.0-37-lowlatency_5.13.0-37.42~20.04.1_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-lowlatency-hwe-20.04_5.13.0.37.42~20.04.22_amd64.debLinux
SUSE-SU-2022:0080-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-4.12.14-16.85.1.x86_64.rpmLinux
SUSE-SU-2022:0080-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-4.12.14-16.85.1.x86_64.rpmLinux
SUSE-SU-2022:0080-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-base-debuginfo-4.12.14-16.85.1.x86_64.rpmLinux
SUSE-SU-2022:0080-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debuginfo-4.12.14-16.85.1.x86_64.rpmLinux
SUSE-SU-2022:0080-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-debugsource-4.12.14-16.85.1.x86_64.rpmLinux
SUSE-SU-2022:0080-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-azure-devel-4.12.14-16.85.1.x86_64.rpmLinux
SUSE-SU-2022:0080-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-azure-4.12.14-16.85.1.noarch.rpmLinux
SUSE-SU-2022:0080-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-azure-4.12.14-16.85.1.noarch.rpmLinux
SUSE-SU-2022:0080-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-azure-4.12.14-16.85.1.x86_64.rpmLinux
Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-azure_5.13.0.1021.24~20.04.10_amd64.debLinux
Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-oracle_5.13.0.1025.30~20.04.1_amd64.debLinux
Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-5.13.0-1021-azure_5.13.0-1021.24~20.04.1_amd64.debLinux
Linux kernel for Microsoft Azure cloud systems (USN-5368-1) linux-image-5.13.0-1025-oracle_5.13.0-1025.30~20.04.1_amd64.debLinux
Linux kernel (USN-5337-1) linux-image-5.13.0-1021-gcp_5.13.0-1021.25~20.04.1_amd64.debLinux
Linux kernel (USN-5338-1) linux-image-5.4.0-1066-gke_5.4.0-1066.69~18.04.1_amd64.debLinux
Linux kernel (USN-5338-1) linux-image-5.4.0-1068-gcp_5.4.0-1068.72_amd64.debLinux
Linux kernel (USN-5338-1) linux-image-5.4.0-1068-gcp_5.4.0-1068.72~18.04.1_amd64.debLinux
Linux kernel (USN-5338-1) linux-image-5.4.0-1037-gkeop_5.4.0-1037.38~18.04.1_amd64.debLinux
Linux kernel (USN-5338-1) linux-image-5.4.0-1073-azure-fde_5.4.0-1073.76+cvm1.1_amd64.debLinux
kernel Security Update (ALAS-2022-1749) kernel-livepatch-4.14.262-200.489-1.0-0.amzn2.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234