CVE-2017-14319

Name of the Vulnerable Software and Affected Versions Xen versions prior to 4.10

Description A grant unmapping issue was discovered in Xen. The issue arises when removing or replacing a grant mapping, where the x86 PV specific path fails to ensure page table entries remain in sync with other accounting done. Although the identity of the page frame was validated correctly, neither the presence of the mapping nor page writability were taken into account. This vulnerability is related to errors in mapping permissions that occur when removing or replacing permissions for x86 guest operating systems running in PV mode. Exploitation of the vulnerability may allow a local attacker to elevate privileges or cause a denial of service.

Recommendations For versions prior to 4.10, update to a version that includes the fix for this issue to prevent potential privilege escalation or denial of service.