Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 655544 (CVE-2018-10471, CVE-2018-10472, CVE-2018-10981, CVE-2018-10982, XSA-258, XSA-259, XSA-261, XSA-262)

Summary: <app-emulation/xen-4.10.1: multiple vulnerabilities (XSA-{258,259,261,262})
Product: Gentoo Security Reporter: tonemgub
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Severity: major CC: hydrapolic, xen
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
See Also:
Whiteboard: B2 [glsa+ cve]
Package list:
Runtime testing required: ---
Bug Depends on: 655188    
Bug Blocks:    

Description tonemgub 2018-05-12 00:18:22 UTC
A malicious or buggy guest may cause a hypervisor crash, resulting in
a Denial of Service (DoS) affecting the entire host.

An attacker supplying a crafted CDROM image can read any file (or
device node) on the dom0 filesystem with the permissions of the qemu
devicemodel process. (The virtual CDROM device is read-only, so
no data can be written.)

A malicious unprivileged device model can cause a Denial of Service
(DoS) affecting the entire host. Specifically, it may prevent use of a
physical CPU for an indeterminate period of time.

* CVE-2018-10982 *
A malicious or buggy HVM guest may cause a hypervisor crash, resulting
in a Denial of Service (DoS) affecting the entire host.
- Privilege escalation, or information leaks, cannot be excluded.

Xen has provided patches for each.

Reproducible: Always
Comment 1 D'juan McDonald (domhnall) 2018-06-21 21:43:49 UTC
See also: Bug 655188 Addresses CVE-2018-10981 Addresses CVE-2018-10982
Comment 2 Larry the Git Cow gentoo-dev 2018-07-17 11:07:21 UTC
The bug has been referenced in the following commit(s):

commit 2ec669947a76c8f65210a5e57cb1b66eaae18987
Author:     Tomas Mozes <>
AuthorDate: 2018-07-13 16:51:07 +0000
Commit:     Mikle Kolyada <>
CommitDate: 2018-07-17 11:06:56 +0000

    app-emulation/xen: bump to 4.10.1
    Package-Manager: Portage-2.3.42, Repoman-2.3.9

 app-emulation/xen/Manifest          |   2 +
 app-emulation/xen/xen-4.10.1.ebuild | 172 ++++++++++++++++++++++++++++++++++++
 2 files changed, 174 insertions(+)
Comment 3 Thomas Deutschmann (RETIRED) gentoo-dev 2018-09-10 09:53:53 UTC
Added to an existing GLSA.
Comment 4 GLSAMaker/CVETool Bot gentoo-dev 2018-10-30 21:06:35 UTC
This issue was resolved and addressed in
 GLSA 201810-06 at
by GLSA coordinator Thomas Deutschmann (whissi).