Lucene search

PRIOn knowledge basePRION:CVE-2013-2072

HistoryAug 28, 2013 - 9:55 p.m.

Buffer overflow

2013-08-2821:55:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

High

7.4 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:M/Au:S/C:C/I:C/A:C

0.0005 Low

EPSS

Percentile

16.2%

JSON

Buffer overflow in the Python bindings for the xc_vcpu_setaffinity call in Xen 4.0.x, 4.1.x, and 4.2.x allows local administrators with permissions to configure VCPU affinity to cause a denial of service (memory corruption and xend toolstack crash) and possibly gain privileges via a crafted cpumap.

CPENameOperatorVersion
debian_linuxeq7.0
xeneq4.1.5
xeneq4.1.2
xeneq4.1.1
xeneq4.1.0
xeneq4.1.3
xeneq4.1.4
xeneq4.2.2
xeneq4.2.0
xeneq4.2.1

Name	Operator	Version
debian_linux	eq	7.0
xen	eq	4.1.5
xen	eq	4.1.2
xen	eq	4.1.1
xen	eq	4.1.0
xen	eq	4.1.3
xen	eq	4.1.4
xen	eq	4.2.2
xen	eq	4.2.0
xen	eq	4.2.1

Rows per page:

1-10 of 151

References

lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html

www.debian.org/security/2014/dsa-3041

www.openwall.com/lists/oss-security/2013/05/17/2

www.securityfocus.com/bid/59982

lists.fedoraproject.org/pipermail/package-announce/2013-May/106718.html

lists.fedoraproject.org/pipermail/package-announce/2013-May/106721.html

lists.fedoraproject.org/pipermail/package-announce/2013-May/106778.html

7.3 High

AI Score

Confidence

High

7.4 High

CVSS2

Access Vector

ADJACENT_NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:A/AC:M/Au:S/C:C/I:C/A:C

0.0005 Low

EPSS

Percentile

16.2%

JSON

Related for PRION:CVE-2013-2072