CVE-2020-29568

MEDIUM

Description

An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are processing watch events using a single thread. If the events are received faster than the thread is able to handle, they will get queued. As the queue is unbounded, a guest may be able to trigger an OOM in the backend. All systems with a FreeBSD, Linux, or NetBSD (any version) dom0 are vulnerable.

References

https://lists.debian.org/debian-lts-announce/2021/02/msg00018.html

https://lists.debian.org/debian-lts-announce/2021/03/msg00010.html

https://www.debian.org/security/2021/dsa-4843

https://xenbits.xenproject.org/xsa/advisory-349.html

Details

Source: MITRE

Published: 2020-12-15

Updated: 2021-03-15

Type: CWE-119

Risk Information

CVSS v2.0

Base Score: 4.9

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 3.9

Severity: MEDIUM

CVSS v3.0

Base Score: 6.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Impact Score: 4

Exploitability Score: 2

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:* versions up to 4.14.1 (inclusive)

Configuration 2

OR

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Tenable Plugins

View all (33 total)

IDNameProductFamilySeverity
148009Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-4750-1)NessusUbuntu Local Security Checks
high
147983Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4749-1)NessusUbuntu Local Security Checks
high
147978Ubuntu 20.04 LTS / 20.10 : Linux kernel vulnerabilities (USN-4751-1)NessusUbuntu Local Security Checks
high
147975Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4748-1)NessusUbuntu Local Security Checks
high
147532Debian DLA-2586-1 : linux security updateNessusDebian Local Security Checks
high
146685SUSE SLES15 Security Update : kernel (SUSE-SU-2021:0532-1)NessusSuSE Local Security Checks
high
146512Debian DLA-2557-1 : linux-4.19 security updateNessusDebian Local Security Checks
high
146511SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0452-1)NessusSuSE Local Security Checks
high
146476SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0437-1)NessusSuSE Local Security Checks
high
146474SUSE SLES15 Security Update : kernel (SUSE-SU-2021:0438-1)NessusSuSE Local Security Checks
high
146470SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0434-1)NessusSuSE Local Security Checks
high
146406SUSE SLES15 Security Update : kernel (SUSE-SU-2021:0427-1)NessusSuSE Local Security Checks
high
146366SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2021:0354-1)NessusSuSE Local Security Checks
high
146362SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0348-1)NessusSuSE Local Security Checks
high
146359SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0353-1)NessusSuSE Local Security Checks
high
146293openSUSE Security Update : the Linux Kernel (openSUSE-2021-241)NessusSuSE Local Security Checks
high
146248OracleVM 3.4 : Unbreakable / etc (OVMSA-2021-0005)NessusOracleVM Local Security Checks
high
146217EulerOS 2.0 SP9 : kernel (EulerOS-SA-2021-1246)NessusHuawei Local Security Checks
high
146096Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9030)NessusOracle Linux Local Security Checks
high
146052Debian DSA-4843-1 : linux - security updateNessusDebian Local Security Checks
high
146047Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9025)NessusOracle Linux Local Security Checks
high
146045Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9024)NessusOracle Linux Local Security Checks
high
145700Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9023)NessusOracle Linux Local Security Checks
high
145567FreeBSD : FreeBSD -- Xen guests can triger backend Out Of Memory (5d91370b-61fd-11eb-b87a-901b0ef719ab)NessusFreeBSD Local Security Checks
medium
145546Xen OOM DoS (XSA-349)NessusMisc.
medium
145458Amazon Linux AMI : kernel (ALAS-2021-1477)NessusAmazon Linux Local Security Checks
high
145456Amazon Linux 2 : kernel (ALAS-2021-1588)NessusAmazon Linux Local Security Checks
high
145287openSUSE Security Update : the Linux Kernel (openSUSE-2021-75)NessusSuSE Local Security Checks
high
144907Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2021-9006)NessusOracle Linux Local Security Checks
high
144906Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9007)NessusOracle Linux Local Security Checks
high
144905Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2021-9009)NessusOracle Linux Local Security Checks
high
144904Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9005)NessusOracle Linux Local Security Checks
high
144903Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2021-9008)NessusOracle Linux Local Security Checks
high