CVE-2017-10921

Name of the Vulnerable Software and Affected Versions Xen versions prior to 4.9

Description The issue is related to the grant-table feature, which does not ensure sufficient type counts for a GNTMAP device map and GNTMAP host map mapping. This allows guest OS users to cause a denial of service, including count mismanagement and memory corruption, or obtain privileged host OS access. The vulnerability can be exploited by a remote attacker to cause a denial of service or gain privileged access to the host.

Recommendations For Xen versions prior to 4.9, update to a version that includes the fix for this issue to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.