CVE-2020-11743

MEDIUM5.5EPSS 0.09%

Published: 4/14/2020Modified: 4/28/2026

Also known as:ALPINE-CVE-2020-11743DEBIAN-CVE-2020-11743

Description

An issue was discovered in Xen through 4.13.x, allowing guest OS users to cause a denial of service because of a bad error path in GNTTABOP_map_grant. Grant table operations are expected to return 0 for success, and a negative number for errors. Some misplaced brackets cause one error path to return 1 instead of a negative value. The grant table code in Linux treats this condition as success, and proceeds with incorrectly initialised state. A buggy or malicious guest can construct its grant table in such a way that, when a backend domain tries to map a grant, it hits the incorrect error path. This will crash a Linux based dom0 or backend domain.

Affected packages (2)

Alpine/xenfrom 0, < 4.12.2-r1
Debian/xenfrom 0, < 4.11.4-1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM5.5	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

References (2)

ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2020-11743
ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2020-11743