Home > Vulnerability Database > CVE-2019-18420

Mend.io Vulnerability Database

CVE-2019-18420

Good to know:

Date: October 31, 2019

An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of service via a VCPUOP_initialise hypercall. hypercall_create_continuation() is a variadic function which uses a printf-like format string to interpret its parameters. Error handling for a bad format character was done using BUG(), which crashes Xen. One path, via the VCPUOP_initialise hypercall, has a bad format character. The BUG() can be hit if VCPUOP_initialise executes for a sufficiently long period of time for a continuation to be created. Malicious guests may cause a hypervisor crash, resulting in a Denial of Service (DoS). Xen versions 4.6 and newer are vulnerable. Xen versions 4.5 and earlier are not vulnerable. Only x86 PV guests can exploit the vulnerability. HVM and PVH guests, and guests on ARM systems, cannot exploit the vulnerability.

Language: C

Severity Score

6.5

Related Resources (14)

Url: https://security-tracker.debian.org/tracker/CVE-2019-18420

Url: https://seclists.org/bugtraq/2020/Jan/21

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZYATWNUGHRBG6I3TC24YHP5Y3J7I6KH/

Url: http://www.openwall.com/lists/oss-security/2019/10/31/1

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I5WWPW4BSZDDW7VHU427XTVXV7ROOFFW/

Url: http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00037.html

Url: https://security.alpinelinux.org/vuln/CVE-2019-18420

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2019-18420

Url: https://nvd.nist.gov/vuln/detail/CVE-2019-18420

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2BQKX7M2RHCWDBKNPX4KEBI3MJIH6AYZ/

Url: https://security.gentoo.org/glsa/202003-56

Url: https://www.debian.org/security/2020/dsa-4602

Url: http://xenbits.xen.org/xsa/advisory-296.html

Url: https://www.mend.io/vulnerability-database/CVE-2019-18420

Severity Score

6.5

Weakness Type (CWE)

Format String Vulnerability

CWE-134

Input Validation

CWE-20

Top Fix

Upgrade Version

Upgrade to version 4.13.0-rc2

Learn More

CVSS v3.1

Base Score:	6.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

CVSS v2

Base Score:	6.3
Access Vector (AV):	NETWORK
Access Complexity (AC):	MEDIUM
Authentication (AU):	SINGLE
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	COMPLETE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2019-18420

Good to know:

Date: October 31, 2019

Language: C

Severity Score

Related Resources (14)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?