CVE-2023-46841

Name of the Vulnerable Software and Affected Versions Xen (affected versions not specified)

Description The issue is related to the interaction between the Control-flow Enforcement Technology (CET) and the Xen emulation. CET is a hardware feature designed to protect against Return Oriented Programming attacks, and it uses Shadow Stacks (CET-SS) to store return addresses. When certain memory accesses need to be intercepted by Xen, the necessary emulation involves replaying the instruction, which may raise exceptions. However, the recovery process involves removing a call frame from the traditional stack, but the counterpart operation for the shadow stack is missing. This can cause a hypervisor crash, leading to a Denial of Service (DoS) of the entire host.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.