XEN : Security Vulnerabilities, CVEs, Published In 2013 (Overflow)
The pciback_enable_msi function in the PCI backend driver (drivers/xen/pciback/conf_space_capability_msi.c) in Xen for the Linux kernel 2.6.18 and 3.8 allows guest OS users with PCI device access to cause a denial of service via a large number of kernel log messages. NOTE: some of these details are obtained from third party information.
Max CVSS
4.9
EPSS Score
0.06%
Published
2013-02-13
Updated
2017-08-29
Certain page table manipulation operations in Xen 4.1.x, 4.2.x, and earlier are not preemptible, which allows local PV kernels to cause a denial of service via vectors related to "deep page table traversal."
Max CVSS
4.7
EPSS Score
0.06%
Published
2013-05-13
Updated
2014-04-19
Buffer overflow in the Python bindings for the xc_vcpu_setaffinity call in Xen 4.0.x, 4.1.x, and 4.2.x allows local administrators with permissions to configure VCPU affinity to cause a denial of service (memory corruption and xend toolstack crash) and possibly gain privileges via a crafted cpumap.
Max CVSS
7.4
EPSS Score
0.05%
Published
2013-08-28
Updated
2016-12-31
The vmx_set_uc_mode function in Xen 3.3 through 4.3, when disabling caches, allows local HVM guests with access to memory mapped I/O regions to cause a denial of service (CPU consumption and possibly hypervisor or guest kernel panic) via a crafted GFN range.
Max CVSS
5.7
EPSS Score
0.18%
Published
2013-08-28
Updated
2016-12-22
The ocaml binding for the xc_vcpu_getaffinity function in Xen 4.2.x and 4.3.x frees certain memory that may still be intended for use, which allows local users to cause a denial of service (heap corruption and crash) and possibly execute arbitrary code via unspecified vectors that trigger a (1) use-after-free or (2) double free.
Max CVSS
4.6
EPSS Score
0.04%
Published
2013-10-17
Updated
2017-01-07
The Ocaml xenstored implementation (oxenstored) in Xen 4.1.x, 4.2.x, and 4.3.x allows local guest domains to cause a denial of service (domain shutdown) via a large message reply.
Max CVSS
5.2
EPSS Score
0.06%
Published
2013-11-02
Updated
2017-01-07
The XEN_DOMCTL_getmemlist hypercall in Xen 3.4.x through 4.3.x (possibly 4.3.1) does not always obtain the page_alloc_lock and mm_rwlock in the same order, which allows local guest administrators to cause a denial of service (host deadlock).
Max CVSS
5.2
EPSS Score
0.06%
Published
2013-12-24
Updated
2017-01-07
7 vulnerabilities found