← voltar
CVE-2020-29568

CVE-2020-29568

EPSS 0.3%
An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are processing watch events using a single thread. If the events are received faster than the thread is able to handle, they will get queued. As the queue is unbounded, a guest may be able to trigger an OOM in the backend. All systems with a FreeBSD, Linux, or NetBSD (any version) dom0 are vulnerable.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://lists.debian.org/debian-lts-announce/2021/02/msg00018.htmlhttps://lists.debian.org/debian-lts-announce/2021/03/msg00010.htmlhttps://security.gentoo.org/glsa/202107-30https://www.debian.org/security/2021/dsa-4843https://xenbits.xenproject.org/xsa/advisory-349.html