CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
26.7%
The pciback_enable_msi function in the PCI backend driver (drivers/xen/pciback/conf_space_capability_msi.c) in Xen for the Linux kernel 2.6.18 and 3.8 allows guest OS users with PCI device access to cause a denial of service via a large number of kernel log messages. NOTE: some of these details are obtained from third party information.
Vendor | Product | Version | CPE |
---|---|---|---|
linux | linux_kernel | 2.6.18 | cpe:2.3:o:linux:linux_kernel:2.6.18:*:*:*:*:*:*:* |
linux | linux_kernel | 3.8 | cpe:2.3:o:linux:linux_kernel:3.8:*:*:*:*:*:*:* |
xen | xen | 3.0.2 | cpe:2.3:o:xen:xen:3.0.2:*:*:*:*:*:*:* |
xen | xen | 3.0.3 | cpe:2.3:o:xen:xen:3.0.3:*:*:*:*:*:*:* |
xen | xen | 3.0.4 | cpe:2.3:o:xen:xen:3.0.4:*:*:*:*:*:*:* |
xen | xen | 3.1.3 | cpe:2.3:o:xen:xen:3.1.3:*:*:*:*:*:*:* |
xen | xen | 3.1.4 | cpe:2.3:o:xen:xen:3.1.4:*:*:*:*:*:*:* |
xen | xen | 3.2.0 | cpe:2.3:o:xen:xen:3.2.0:*:*:*:*:*:*:* |
xen | xen | 3.2.1 | cpe:2.3:o:xen:xen:3.2.1:*:*:*:*:*:*:* |
xen | xen | 3.2.2 | cpe:2.3:o:xen:xen:3.2.2:*:*:*:*:*:*:* |
lists.opensuse.org/opensuse-security-announce/2013-03/msg00004.html
lists.opensuse.org/opensuse-security-announce/2013-04/msg00018.html
lists.opensuse.org/opensuse-security-announce/2013-06/msg00005.html
osvdb.org/89903
secunia.com/advisories/52059
www.debian.org/security/2013/dsa-2632
www.openwall.com/lists/oss-security/2013/02/05/9
www.securityfocus.com/bid/57740
exchange.xforce.ibmcloud.com/vulnerabilities/81923