CVE Reference: CVE-2012-4536

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2012-4536

Description:
The (1) domain_pirq_to_emuirq and (2) physdev_unmap_pirq functions in Xen 2.2 allows local guest OS administrators to cause a denial of service (Xen crash) via a crafted pirq value that triggers an out-of-bounds read.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/80023

SUSE
  http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html
  http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html
  http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00009.html
  http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00008.html

ST
  1027760

SAID
  Secunia Advisory: SA51200
  Secunia Advisory: SA51413
  Secunia Advisory: SA51324
  Secunia Advisory: SA51352
  Secunia Advisory: SA55082

OSVDB
  87297

MLIST
  http://www.openwall.com/lists/oss-security/2012/11/13/2
  http://lists.xen.org/archives/html/xen-announce/2012-11/msg00003.html

GENTOO
  http://security.gentoo.org/glsa/glsa-201309-24.xml

BID
  56498


Return to the previous page.