HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2023-34326

CVSS 7.8v3.1pub. 2024-01-05upd. 2025-11-04

The caching invalidation guidelines from the AMD-Vi specification (48882—Rev 3.07-PUB—Oct 2022) is incorrect on some hardware, as devices will malfunction (see stale DMA mappings) if some fields of the DTE are updated but the IOMMU TLB is not flushed. Such stale DMA mappings can point to memory ranges not owned by the guest, thus allowing access to unindented memory regions.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Xen

    OS
    Xen
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2025-58142CRITICAL9.8PL ✓ten sam produkt

Xen: NULL pointer dereference w obsłudze syntetycznych timerów viridian

CVE-2025-27466CRITICAL9.8PL ✓ten sam produkt

Błąd NULL pointer dereference w kodzie viridian hiperwizora Xen

CVE-2025-58143CRITICAL9.8PL ✓ten sam produkt

Race condition w Xen viridian — zwolnienie strony obecnej w tablicach p2m

CVE-2019-18425CRITICAL9.8ten sam produkt

An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by...

CVE-2018-12892CRITICAL9.9ten sam produkt

An issue was discovered in Xen 4.7 through 4.10.x. libxl fails to pass the readonly flag to qemu when setting ...