PT-2011-4352 · Xen+1 · Xen+1

Published

2011-05-09

Updated

2017-08-29

CVE-2011-3262

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Xen versions 3.2 through 4.1

Description The issue is related to a lack of error checking in the decompression loop, allowing local users to cause a denial of service. This can result in an infinite loop in management software and consumption of management domain resources.

Recommendations For Xen versions 3.2 through 4.1, consider applying configuration changes to restrict resource allocation to the management domain as a temporary mitigation measure. At the moment, there is no information about a newer version that contains a fix for this issue.

Fix

DoS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

CVE-2011-3262

DSA-2337-1

RHSA-2011:0496

RHSA-2011_0496

Affected Products

Red Hat

Xen

PT-2011-4352 · Xen+1 · Xen+1

CVE-2011-3262

Weakness Enumeration

Related Identifiers

Affected Products

References · 12