CVE-2013-0215

oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly consider the state of the Xenstore ring during read operations, which allows guest OS users to cause a denial of service daemon crash and host-control outage, or memory consumption or obtain sensitive control-plane data by...

Design/Logic Flaw

oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly consider the state of the Xenstore ring during read operations, which allows guest OS users to cause a denial of service daemon crash and host-control outage, or memory consumption or obtain sensitive control-plane data by...

CVE-2013-0215

oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly consider the state of the Xenstore ring during read operations, which allows guest OS users to cause a denial of service daemon crash and host-control outage, or memory consumption or obtain sensitive control-plane data by...

PT-2013-2161 · Xen · Xen

Name of the Vulnerable Software and Affected Versions: Xen versions 4.1.x through 4.2.x Xen version xen-unstable Description: The issue allows guest OS users with administrative access to cause a denial of service, resulting in a daemon crash and host-control outage, or memory consumption. It als...

several hypercalls do not validate input GFNs

ISSUE DESCRIPTION The function getpagefromgfn does not validate its input GFN. An invalid GFN passed to a hypercall which uses this function will cause the hypervisor to read off the end of the frame table and potentially crash. IMPACT A malicious guest administrator of a PV guest can cause Xen t...