CVE-2020-29481

An issue was discovered in Xen through 4.14.x. Access rights of Xenstore nodes are per domid. Unfortunately, existing granted access rights are not removed when a domain is being destroyed. This means that a new domain created with the same domid will inherit the access rights to Xenstore nodes from the previous domain(s) with the same domid. Because all Xenstore entries of a guest below /local/domain/<domid> are being deleted by Xen tools when a guest is destroyed, only Xenstore entries of other guests still running are affected. For example, a newly created guest domain might be able to read sensitive information that had belonged to a previously existing guest domain. Both Xenstore implementations (C and Ocaml) are vulnerable.

References

Affected packages

Git / github.com/sleuthkit/sleuthkit

Affected ranges

Type: GIT
Repo: https://github.com/sleuthkit/sleuthkit
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

c6efd66293546b9c95637be703c7c7823e950629

Affected versions

Other

VisualStudio_2010

ct-3.*

ct-3.10.0

ct-3.11.0

ct-3.12.0

ct-3.13.0

ct-3.5.0

ct-3.6.0

ct-3.8.0

ct-3.9.0

sleuthkit-4.*

sleuthkit-4.0.0

sleuthkit-4.0.0b1

sleuthkit-4.0.1

sleuthkit-4.0.2

sleuthkit-4.1.0

sleuthkit-4.1.1

sleuthkit-4.1.2

sleuthkit-4.1.3

sleuthkit-4.10.0

sleuthkit-4.10.1

sleuthkit-4.10.2

sleuthkit-4.11.0

sleuthkit-4.11.1

sleuthkit-4.12.0

sleuthkit-4.12.1

sleuthkit-4.14.0

sleuthkit-4.2.0

sleuthkit-4.3.1

sleuthkit-4.4.0

sleuthkit-4.4.1

sleuthkit-4.4.2

sleuthkit-4.5.0

sleuthkit-4.6.0

sleuthkit-4.6.1

sleuthkit-4.6.2

sleuthkit-4.6.3

sleuthkit-4.6.4

sleuthkit-4.6.5

sleuthkit-4.6.6

sleuthkit-4.6.7

sleuthkit-4.7.0

sleuthkit-4.8.0

sleuthkit-4.8.0-fixed

sleuthkit-4.9.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-29481.json"