PT-2021-6088 · Xen+2 · Xen+2

Published

2021-10-06

Updated

2024-06-15

CVE-2021-28702

CVSS v3.1

7.6

High

Vector

AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Xen (affected versions not specified)

Description The issue is related to the incorrect deassignment of certain PCI devices with Reserved Memory Regions (RMRRs) when passed through to a guest. This can lead to the IOMMU configuration pointing to a freed data structure, including IO Pagetables, resulting in unpredictable behavior such as IOMMU faults or memory corruption when the device performs DMA or interrupts. The vulnerability can be exploited by a remote attacker to cause a denial of service or potentially escalate privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416CWE-269

Related Identifiers

BDU:2022-00752

CVE-2021-28702

DSA-5017-1

OPENSUSE-SU-2021:1543-1

OPENSUSE-SU-2021:3968-1

OPENSUSE-SU-2021_1543-1

OPENSUSE-SU-2021_3968-1

OPENSUSE-SU-2024:11624-1

SUSE-SU-2021:3852-1

SUSE-SU-2021:3888-1

SUSE-SU-2021:3968-1

SUSE-SU-2021:3977-1

SUSE-SU-2021_3852-1

SUSE-SU-2021_3888-1

SUSE-SU-2021_3968-1

Affected Products

Red Os

Suse

Xen

PT-2021-6088 · Xen+2 · Xen+2

CVE-2021-28702

Weakness Enumeration

Related Identifiers

Affected Products

References · 55