CVE-2012-5514

The guest_physmap_mark_populate_on_demand function in Xen 4.2 and earlier does not properly unlock the subject GFNs when checking if they are in use, which allows local guest HVM administrators to cause a denial of service (hang) via unspecified vectors.

Affected Software

Name	Vendor	Start Version	End Version
Xen	Xen	*	4.2.0 (including)
Xen	Xen	3.0.2 (including)	3.0.2 (including)
Xen	Xen	3.0.3 (including)	3.0.3 (including)
Xen	Xen	3.0.4 (including)	3.0.4 (including)
Xen	Xen	3.1.3 (including)	3.1.3 (including)
Xen	Xen	3.1.4 (including)	3.1.4 (including)
Xen	Xen	3.2.0 (including)	3.2.0 (including)
Xen	Xen	3.2.1 (including)	3.2.1 (including)
Xen	Xen	3.2.2 (including)	3.2.2 (including)
Xen	Xen	3.2.3 (including)	3.2.3 (including)
Xen	Xen	3.3.0 (including)	3.3.0 (including)
Xen	Xen	3.3.1 (including)	3.3.1 (including)
Xen	Xen	3.3.2 (including)	3.3.2 (including)
Xen	Xen	3.4.0 (including)	3.4.0 (including)
Xen	Xen	3.4.1 (including)	3.4.1 (including)
Xen	Xen	3.4.2 (including)	3.4.2 (including)
Xen	Xen	3.4.3 (including)	3.4.3 (including)
Xen	Xen	3.4.4 (including)	3.4.4 (including)
Xen	Xen	4.0.0 (including)	4.0.0 (including)
Xen	Xen	4.0.1 (including)	4.0.1 (including)
Xen	Xen	4.0.2 (including)	4.0.2 (including)
Xen	Xen	4.0.3 (including)	4.0.3 (including)
Xen	Xen	4.0.4 (including)	4.0.4 (including)
Xen	Xen	4.1.0 (including)	4.1.0 (including)
Xen	Xen	4.1.1 (including)	4.1.1 (including)
Xen	Xen	4.1.2 (including)	4.1.2 (including)
Xen	Xen	4.1.3 (including)	4.1.3 (including)
Xen	Ubuntu	devel	*
Xen	Ubuntu	oneiric	*
Xen	Ubuntu	precise	*
Xen	Ubuntu	quantal	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-5514
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Affected Software

References