Note:
This project will be discontinued after December 13, 2021. [more]
2017-02-22
Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when emulating instructions that generate software interrupts, allows local HVM guest OS users to cause a denial of service (guest crash) by leveraging IDT entry miscalculation.
Products | Xen |
Type | Incorrect Calculation (CWE-682) |
First patch | - None (likely due to unavailable code) |
Links |
• https://security.gentoo.org/glsa/201612-56
• http://xenbits.xen.org/xsa/advisory-196.html • http://www.securitytracker.com/id/1037345 • http://www.securityfocus.com/bid/94475 |