Fedora 20 : xen-4.3.2-2.fc20 (2014-4458)

HVMOPsetmemaccess is not preemptible XSA-89, CVE-2014-2599 1080425 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Fedora 19 : xen-4.2.4-3.fc19 (2014-4424)

HVMOPsetmemaccess is not preemptible XSA-89, CVE-2014-2599 1080425 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...

Input validation

The HVMOPsetmemaccess HVM control operations in Xen 4.1.x for 32-bit and 4.1.x through 4.4.x for 64-bit allow local guest administrators to cause a denial of service CPU consumption by leveraging access to certain service domains for HVM guests and a large input...

CVE-2014-2599

The HVMOPsetmemaccess HVM control operations in Xen 4.1.x for 32-bit and 4.1.x through 4.4.x for 64-bit allow local guest administrators to cause a denial of service CPU consumption by leveraging access to certain service domains for HVM guests and a large input...

CVE-2014-2599

CVE-2014-2599 affects the Xen hypervisor. The vulnerability arises in HVMOP_set_mem_access within HVM control operations, where being able to access certain service domains for HVM guests and supplying a large input can allow a local guest administrator to trigger a denial of service (CPU consump...

CVE-2014-2599

The HVMOPsetmemaccess HVM control operations in Xen 4.1.x for 32-bit and 4.1.x through 4.4.x for 64-bit allow local guest administrators to cause a denial of service CPU consumption by leveraging access to certain service domains for HVM guests and a large input...

HVMOP_set_mem_access is not preemptible

ISSUE DESCRIPTION Processing of the HVMOPsetmemaccess HVM control operations does not check the size of its input and can tie up a physical CPU for extended periods of time. IMPACT In a configuration where device models run with limited privilege for example, stubdom device models, a guest attack...

CVE-2012-5512

Array index error in the HVMOPsetmemaccess handler in Xen 4.1 allows local HVM guest OS administrators to cause a denial of service crash or obtain sensitive information via unspecified vectors...

CVE-2012-5512

Array index error in the HVMOPsetmemaccess handler in Xen 4.1 allows local HVM guest OS administrators to cause a denial of service crash or obtain sensitive information via unspecified vectors...

Information disclosure

Array index error in the HVMOPsetmemaccess handler in Xen 4.1 allows local HVM guest OS administrators to cause a denial of service crash or obtain sensitive information via unspecified vectors...

CVE-2012-5512

Array index error in the HVMOPsetmemaccess handler in Xen 4.1 allows local HVM guest OS administrators to cause a denial of service crash or obtain sensitive information via unspecified vectors...

CVE-2012-5512

CVE-2012-5512 affects Xen 4.1 via an array index error in the HVMOP_set_mem_access handler, enabling local HVM guests admins to crash the host or leak information. The provided documents confirm the vulnerability and impact but do not specify a fixed version or patch in these sources. No exploita...

HVMOP_get_mem_access crash / HVMOP_set_mem_access information leak

ISSUE DESCRIPTION The HVMOPsetmemaccess operation handler uses an input as an array index before range checking it. IMPACT A malicious guest administrator can cause Xen to crash. If the out of array bounds access does not crash, the arbitrary value read will be used if the caller reads back the...