The do_mmu_update function in arch/x86/mm.c in Xen 4.x up to and including 4.4.x does not properly restrict updates to only PV page tables, which allows remote PV guests to cause a denial of service (NULL pointer dereference) by leveraging hardware emulation services for HVM guests using Hardware Assisted Paging (HAP).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |
||
debian debian linux 7.0 |
||
xen xen 4.0.0 |
||
xen xen 4.1.2 |
||
xen xen 4.1.3 |
||
xen xen 4.1.4 |
||
xen xen 4.3.0 |
||
xen xen 4.3.1 |
||
xen xen 4.1.0 |
||
xen xen 4.1.1 |
||
xen xen 4.2.2 |
||
xen xen 4.2.3 |
||
xen xen 4.0.1 |
||
xen xen 4.0.2 |
||
xen xen 4.1.5 |
||
xen xen 4.1.6.1 |
||
xen xen 4.0.3 |
||
xen xen 4.0.4 |
||
xen xen 4.2.0 |
||
xen xen 4.2.1 |