7.4 High
CVSS2
Access Vector
ADJACENT_NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:A/AC:M/Au:S/C:C/I:C/A:C
0.0005 Low
EPSS
Percentile
17.8%
Buffer overflow in the Python bindings for the xc_vcpu_setaffinity call in
Xen 4.0.x, 4.1.x, and 4.2.x allows local administrators with permissions to
configure VCPU affinity to cause a denial of service (memory corruption and
xend toolstack crash) and possibly gain privileges via a crafted cpumap.
Author | Note |
---|---|
mdeslaur | This is XSA-56 4.0 and later |