CVE-2012-3497

Name of the Vulnerable Software and Affected Versions Xen versions 4.0 through 4.2

Description The issue affects the Transcendent Memory (TMEM) in Xen, specifically the functions TMEMC SAVE GET CLIENT WEIGHT, TMEMC SAVE GET CLIENT CAP, TMEMC SAVE GET CLIENT FLAGS, and TMEMC SAVE END. It allows local guest OS users to cause a denial of service, potentially resulting in a NULL pointer dereference or memory corruption and host crash, via a NULL client id.

Recommendations For Xen versions 4.0 through 4.2, consider restricting access to the TMEM functions to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using a NULL client id in the affected functions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.