Vulnerability Bulletins

Xen Security Advisory 336 (XSA-336) (CVE-2020-25604)


System information

   
Affected software AmazonWS

Description

Initial Publication Date: 2020/09/22 8:45AM PST CVE Identifier: CVE-2020-25604 AWS is aware of Xen Security Advisory 336 released by the Xen Security team on September 22nd 2020. Nitro based instances are not affected. Under rare circumstances, a guest may be able to cause a Xen host to reboot. This poses no risk to confidentiality or integrity of customer data, and no customer action is required. We are actively updating the fleet, and will update this security bulletin when complete.

More info:

https://aws.amazon.com/security/security-bulletins/AWS-2020-003/

Standar resources

Property Value
CVE CVE-2020-25604.

Version history

Version Comments Date
1.0 Advisory issued 2020-09-23
Ministerio de Defensa
CNI
CCN
CCN-CERT