Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-5515HistoryDec 13, 2012 - 11:53 a.m.
CVE-2012-5515
2012-12-1311:53:00
Debian Security Bug Tracker
security-tracker.debian.org
13
4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
27.3%
The (1) XENMEM_decrease_reservation, (2) XENMEM_populate_physmap, and (3) XENMEM_exchange hypercalls in Xen 4.2 and earlier allow local guest administrators to cause a denial of service (long loop and hang) via a crafted extent_order value.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | xen | < 4.1.3-5 | xen_4.1.3-5_all.deb |
| Debian | 11 | all | xen | < 4.1.3-5 | xen_4.1.3-5_all.deb |
| Debian | 10 | all | xen | < 4.1.3-5 | xen_4.1.3-5_all.deb |
| Debian | 999 | all | xen | < 4.1.3-5 | xen_4.1.3-5_all.deb |
| Debian | 13 | all | xen | < 4.1.3-5 | xen_4.1.3-5_all.deb |
Related
ubuntucve
ubuntucve
CVE-2012-5515
2012-12-13 00:00:00
cve
cve
CVE-2012-5515
2012-12-13 11:53:00
prion
prion
Design/Logic Flaw
2012-12-13 11:53:00
xen
xen
Several memory hypercall operations allow invalid extent order values
2012-12-03 17:51:00
nessus
nessus
SuSE 10 Security Update : Xen (ZYPP Patch Number 8379)
2012-12-05 00:00:00
SUSE SLED10 / SLES10 Security Update : Xen (SUSE-SU-2012:1606-1)
2015-05-20 00:00:00
Scientific Linux Security Update : kernel on SL5.x i386/x86_64 (20130122)
2013-01-24 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2012:1606-1)
2021-06-09 00:00:00
CentOS Update for kernel CESA-2013:0168 centos5
2013-01-24 00:00:00
Oracle: Security Advisory (ELSA-2013-0168-1)
2015-10-06 00:00:00
suse
suse
Security update for Xen (important)
2012-12-04 22:08:52
xen to fix various denial of service issues (important)
2013-01-23 14:05:00
xen to fix various denial of service issues (important)
2012-12-23 20:16:24
redhat
redhat
(RHSA-2013:0168) Moderate: kernel security and bug fix update
2013-01-22 00:00:00
oraclelinux
oraclelinux
1
2013-01-22 00:00:00
kernel security and bug fix update
2013-01-22 00:00:00
Oracle linux 5 kernel update
2013-10-02 00:00:00
centos
centos
kernel security update
2013-01-23 11:37:33
fedora
fedora
[SECURITY] Fedora 18 Update: xen-4.2.0-6.fc18
2012-12-12 00:16:38
[SECURITY] Fedora 17 Update: xen-4.1.4-2.fc17
2013-01-23 01:28:58
[SECURITY] Fedora 17 Update: xen-4.1.3-7.fc17
2012-12-13 06:01:07
securityvulns
securityvulns
[SECURITY] [DSA 2582-1] xen security update
2012-12-09 00:00:00
xen multiple security vulnerabilities
2012-12-09 00:00:00
osv
osv
xen - denial of service
2012-12-07 00:00:00
debian
debian
[SECURITY] [DSA 2582-1] xen security update
2012-12-07 15:40:44
gentoo
gentoo
Xen: Multiple vulnerabilities
2013-09-27 00:00:00
4.7 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
27.3%
Related for DEBIANCVE:CVE-2012-5515