CVE Vulnerabilities

CVE-2013-4356

Published: Oct 09, 2013 | Modified: Apr 11, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.4 MEDIUM
AV:A/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
1 LOW
AV:L/AC:H/Au:S/C:P/I:N/A:N
RedHat/V3
Ubuntu
MEDIUM
root.io minimus.io echohq.com

Xen 4.3.x writes hypervisor mappings to certain shadow pagetables when live migration is performed on hosts with more than 5TB of RAM, which allows local 64-bit PV guests to read or write to invalid memory and cause a denial of service (crash).

Affected Software

Name Vendor Start Version End Version
Xen Xen 4.3.0 (including) 4.3.0 (including)
Xen Ubuntu devel *
Xen Ubuntu saucy *
Xen-3.3 Ubuntu upstream *

References