PT-2012-5470 · Xen+1 · Xen+1

Publicado

2012-11-21

Atualizado

2024-06-15

CVE-2012-4539

CVSS v2.0

2.1

Baixa

Vetor

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Xen versions 4.0 through 4.2

Description The issue allows local guest OS administrators to cause a denial of service, resulting in an infinite loop and hang or crash, by providing invalid arguments to the GNTTABOP get status frames hypercall.

Recommendations For Xen versions 4.0 through 4.2, as a temporary workaround, consider restricting the use of the GNTTABOP get status frames hypercall until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-399

Identificadores relacionados

CVE-2012-4539

DSA-2582-1

OPENSUSE-SU-2012_1572-1

OPENSUSE-SU-2012_1573-1

OPENSUSE-SU-2024:10196-1

Produtos afetados

Suse

Xen

PT-2012-5470 · Xen+1 · Xen+1

CVE-2012-4539

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 186