PT-2013-4970 · Xen · Xen

Andrew Cooper

Published

2013-10-09

Updated

2024-06-15

CVE-2013-4356

CVSS v2.0

5.4

Medium

Vector

AV:A/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Xen versions 4.3.x

Description The issue allows local 64-bit PV guests to read or write to invalid memory and cause a denial of service (crash) when live migration is performed on hosts with more than 5TB of RAM.

Recommendations For Xen version 4.3.x, consider disabling live migration on hosts with more than 5TB of RAM as a temporary workaround until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2013-4356

OPENSUSE-SU-2024:10196-1

Affected Products

Xen

PT-2013-4970 · Xen · Xen

CVE-2013-4356

Weakness Enumeration

Related Identifiers

Affected Products

References · 133