The PV domain builder in Xen 4.2 and previous versions does not validate the size of the kernel or ramdisk (1) before or (2) after decompression, which allows local guest administrators to cause a denial of service (domain 0 memory consumption) via a crafted (a) kernel or (b) ramdisk.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xen xen 4.1.1 |
||
xen xen 4.1.0 |
||
xen xen |
||
xen xen 4.1.3 |
||
xen xen 4.1.2 |