CVE Vulnerabilities

CVE-2011-3131

Published: Dec 13, 2012 | Modified: Dec 13, 2012
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:S/C:N/I:N/A:C
RedHat/V2
5.2 MODERATE
AV:A/AC:M/Au:S/C:N/I:N/A:C
RedHat/V3
Ubuntu
LOW

Xen 4.1.1 and earlier allows local guest OS kernels with control of a PCI[E] device to cause a denial of service (CPU consumption and host hang) via many crafted DMA requests that are denied by the IOMMU, which triggers a livelock.

Affected Software

Name Vendor Start Version End Version
Xen Xen * 4.1.1 (including)
Red Hat Enterprise Linux 5 RedHat kernel-0:2.6.18-274.7.1.el5 *
Xen Ubuntu oneiric *
Xen-3.1 Ubuntu hardy *
Xen-3.2 Ubuntu hardy *
Xen-3.3 Ubuntu lucid *
Xen-3.3 Ubuntu maverick *
Xen-3.3 Ubuntu natty *

References