Note:
This project will be discontinued after December 13, 2021. [more]
2017-02-22
Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when emulating instructions that generate software interrupts, allows local HVM guest OS users to cause a denial of service (guest crash) by leveraging an incorrect choice for software interrupt delivery.
| Products | Xen |
| Type | Improper Access Control (CWE-284) |
| First patch | - None (likely due to unavailable code) |
| Links |
• https://security.gentoo.org/glsa/201612-56
• http://xenbits.xen.org/xsa/advisory-196.html • http://www.securitytracker.com/id/1037345 • http://www.securityfocus.com/bid/94475 |