Vulnerability CVE-2017-7995

Vulnerability Name:

CVE-2017-7995 (CCN-125802)

Assigned:

2017-05-02

Published:

2017-05-02

Updated:

2017-05-15

Summary:

Xen PV guest before Xen 4.3 checked access permissions to MMIO ranges only after accessing them, allowing host PCI device space memory reads, leading to information disclosure. This is an error in the get_user function.
Note: the upstream Xen Project considers versions before 4.5.x to be EOL.

CVSS v3 Severity:

3.8 Low (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N)
3.3 Low (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

4.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L)
3.9 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): High Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

1.7 Low (CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

3.5 Low (CCN CVSS v2 Vector: AV:L/AC:H/Au:S/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): High Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-200

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2017-7995

Source: CCN
Type: opensuse-security-announce, Tue, 2 May 2017 18:13:29 +0200 (CEST)
important: Security update for xen

Source: CONFIRM
Type: Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2017-05/msg00005.html

Source: BID
Type: Third Party Advisory, VDB Entry
98314

Source: CCN
Type: BID-98314
Xen CVE-2017-7995 Information Disclosure Vulnerability

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory, VDB Entry
https://bugzilla.suse.com/show_bug.cgi?id=1033948

Source: XF
Type: UNKNOWN
xen-cve20177995-info-disc(125802)

Source: CCN
Type: Xen Web site
The Xen Project, the powerful open source industry standard for virtualization.

Vulnerable Configuration:

Configuration 1:

cpe:/o:xen:xen:*:*:*:*:*:*:*:* (Version <= 4.2.5)

Configuration 2:

cpe:/a:suse:manager:2.1:*:*:*:*:*:*:*

OR cpe:/a:suse:manager_proxy:2.1:*:*:*:*:*:*:*

OR cpe:/a:suse:openstack_cloud:5:*:*:*:*:*:*:*

OR cpe:/o:novell:suse_linux_enterprise_point_of_sale:11.0:sp3:*:*:*:*:*:*

OR cpe:/o:novell:suse_linux_enterprise_server:11.0:sp3:*:*:ltss:*:*:*

Configuration CCN 1:

cpe:/o:xen:xen:4.2.0:-:*:*:*:*:x64:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20177995	V	CVE-2017-7995	2022-05-20
oval:org.opensuse.security:def:33760	P	Security update for mariadb (Moderate)	2021-12-30
oval:org.opensuse.security:def:30261	P	Security update for opensc (Important)	2021-10-29
oval:org.opensuse.security:def:30260	P	Security update for qemu (Important)	2021-10-28
oval:org.opensuse.security:def:34571	P	Security update for git (Low)	2021-10-20
oval:org.opensuse.security:def:34572	P	Security update for python36 (Moderate)	2021-10-20
oval:org.opensuse.security:def:33015	P	Security update for atftp (Moderate)	2021-09-27
oval:org.opensuse.security:def:34515	P	Security update for python-PyYAML (Important)	2021-08-24
oval:org.opensuse.security:def:34514	P	Security update for qemu (Moderate)	2021-08-23
oval:org.opensuse.security:def:31664	P	Security update for cpio (Important)	2021-08-14
oval:org.opensuse.security:def:31663	P	Security update for djvulibre (Important)	2021-08-05
oval:org.opensuse.security:def:33692	P	Security update for dbus-1 (Important)	2021-08-02
oval:org.opensuse.security:def:32936	P	Security update for shim (Important)	2021-06-08
oval:org.opensuse.security:def:32925	P	Security update for hivex (Moderate)	2021-05-26
oval:org.opensuse.security:def:29354	P	Security update for tomcat (Important)	2021-04-29
oval:org.opensuse.security:def:30186	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:30187	P	Security update for gdm (Important)	2021-04-28
oval:org.opensuse.security:def:34416	P	Security update for MozillaFirefox (Important)	2021-04-27
oval:org.opensuse.security:def:28914	P	Security update for xen (Important)	2021-04-20
oval:org.opensuse.security:def:30176	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP2) (Important)	2021-04-12
oval:org.opensuse.security:def:30174	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP2) (Important)	2021-04-12
oval:org.opensuse.security:def:30175	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP2) (Important)	2021-04-12
oval:org.opensuse.security:def:34398	P	Security update for gssproxy (Moderate)	2021-04-06
oval:org.opensuse.security:def:34662	P	Security update for openssl-1_1 (Important)	2021-03-25
oval:org.opensuse.security:def:34661	P	Security update for nghttp2 (Important)	2021-03-24
oval:org.opensuse.security:def:28926	P	Security update for python3 (Important)	2021-02-08
oval:org.opensuse.security:def:34438	P	Security update for perl-Convert-ASN1 (Moderate)	2021-01-19
oval:org.opensuse.security:def:32924	P	Security update for perl-Convert-ASN1 (Moderate)	2021-01-19
oval:org.opensuse.security:def:28915	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:33653	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:34417	P	Security update for the Linux Kernel (Important)	2021-01-15
oval:org.opensuse.security:def:33716	P	Security update for tomcat (Moderate)	2021-01-05
oval:org.opensuse.security:def:31625	P	Security update for flac (Moderate)	2021-01-04
oval:org.opensuse.security:def:31626	P	Security update for dovecot22 (Important)	2021-01-04
oval:org.opensuse.security:def:35716	P	gvim-7.2-8.15.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35675	P	bzip2-1.0.5-34.253.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35715	P	gtk2-2.18.9-0.21.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35674	P	boost-license-1.36.0-11.17 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:34966	P	Security update for gcc43 (Moderate)	2020-12-01
oval:org.opensuse.security:def:29269	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:34927	P	Security update for expat (Moderate)	2020-12-01
oval:org.opensuse.security:def:29212	P	Security update for patch (Important)	2020-12-01
oval:org.opensuse.security:def:34878	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:29126	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:34820	P	Security update for atftp (Important)	2020-12-01
oval:org.opensuse.security:def:30987	P	Security update for ipsec-tools (Moderate)	2020-12-01
oval:org.opensuse.security:def:28995	P	Security update for ctdb	2020-12-01
oval:org.opensuse.security:def:30943	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:30923	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:34185	P	Security update for openvpn (Important)	2020-12-01
oval:org.opensuse.security:def:30884	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:30835	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:35037	P	Security update for inn (Moderate)	2020-12-01
oval:org.opensuse.security:def:34280	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:30780	P	Security update for bash (Low)	2020-12-01
oval:org.opensuse.security:def:34993	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:34196	P	Security update for patch (Important)	2020-12-01
oval:org.opensuse.security:def:30625	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:34967	P	Security update for gcc43 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30538	P	Security update for java-1_7_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:34928	P	Security update for expat (Moderate)	2020-12-01
oval:org.opensuse.security:def:30481	P	Security update for bsdtar (Important)	2020-12-01
oval:org.opensuse.security:def:34879	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:30392	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:34821	P	Security update for audiofile (Moderate)	2020-12-01
oval:org.opensuse.security:def:30988	P	Security update for ipsec-tools (Moderate)	2020-12-01
oval:org.opensuse.security:def:30944	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:30924	P	Security update for gdb (Moderate)	2020-12-01
oval:org.opensuse.security:def:27813	P	Security update for librsvg (Important)	2020-12-01
oval:org.opensuse.security:def:30885	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:29268	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:27812	P	Security update for LibreOffice	2020-12-01
oval:org.opensuse.security:def:30836	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:29232	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:34281	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:30781	P	Security update for bind	2020-12-01
oval:org.opensuse.security:def:28594	P	Security update for Perl	2020-12-01
oval:org.opensuse.security:def:34197	P	Security update for pcsc-lite	2020-12-01
oval:org.opensuse.security:def:30626	P	Security update for Xen and libvirt	2020-12-01
oval:org.opensuse.security:def:28550	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:34186	P	Security update for openvpn (Important)	2020-12-01
oval:org.opensuse.security:def:30539	P	Security update for java-1_7_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:28534	P	Security update for Mono	2020-12-01
oval:org.opensuse.security:def:30482	P	Security update for Mono	2020-12-01
oval:org.opensuse.security:def:28495	P	Recommended update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30393	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:28446	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:28393	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:28241	P	Security update for libvorbis (Moderate)	2020-12-01
oval:org.opensuse.security:def:28157	P	Security update for the Linux Kernel (Critical)	2020-12-01
oval:org.opensuse.security:def:30386	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:28100	P	Security update for git (Moderate)	2020-12-01
oval:org.opensuse.security:def:33604	P	Security update for MozillaFirefox (Moderate)	2020-12-01
oval:org.opensuse.security:def:30349	P	Security update for vim (Moderate)	2020-12-01
oval:org.opensuse.security:def:28016	P	Security update for augeas (Moderate)	2020-12-01
oval:org.opensuse.security:def:33547	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:29711	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:27888	P	Security update for rubygem-rack-ssl	2020-12-01
oval:org.opensuse.security:def:33390	P	Security update for SUSE Manager client tools	2020-12-01
oval:org.opensuse.security:def:29667	P	Security update for dbus-1 (Important)	2020-12-01
oval:org.opensuse.security:def:27824	P	Security update for openwsman	2020-12-01
oval:org.opensuse.security:def:33302	P	xorg-x11-libxcb-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29649	P	Security update for curl (Important)	2020-12-01
oval:org.opensuse.security:def:34184	P	Security update for openvpn	2020-12-01
oval:org.opensuse.security:def:33245	P	python-pywbem on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29610	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:33150	P	libgcc_s1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29561	P	Security update for NetworkManager-gnome	2020-12-01
oval:org.opensuse.security:def:35036	P	Security update for icu (Important)	2020-12-01
oval:org.opensuse.security:def:29507	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:34992	P	Security update for glibc (Important)	2020-12-01
oval:com.ubuntu.precise:def:20177995000	V	CVE-2017-7995 on Ubuntu 12.04 LTS (precise) - medium.	2017-05-03
oval:com.ubuntu.xenial:def:201779950000000	V	CVE-2017-7995 on Ubuntu 16.04 LTS (xenial) - medium.	2017-05-03
oval:com.ubuntu.trusty:def:20177995000	V	CVE-2017-7995 on Ubuntu 14.04 LTS (trusty) - medium.	2017-05-03
oval:com.ubuntu.xenial:def:20177995000	V	CVE-2017-7995 on Ubuntu 16.04 LTS (xenial) - medium.	2017-05-03

BACK