CVE-2010-4247

Name of the Vulnerable Software and Affected Versions Xen versions prior to 3.4.0 for the Linux kernel 2.6.18

Description The issue allows guest OS users to cause a denial of service, resulting in an infinite loop and CPU consumption. This is achieved by sending a large production request index to the blkback or blktap back-end drivers, specifically through the do block io op function in drivers/xen/blkback/blkback.c and drivers/xen/blktap/blktap.c.

Recommendations For versions prior to 3.4.0, consider updating to version 3.4.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the blkback and blktap back-end drivers to minimize the risk of exploitation.