CVE-2012-6035 in Xeninfo

Zusammenfassung (Englisch)

The do_tmem_destroy_pool function in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 does not properly validate pool ids, which allows local guest OS users to cause a denial of service (memory corruption and host crash) or execute arbitrary code via unspecified vectors. NOTE: this issue was originally published as part of CVE-2012-3497, which was too general; CVE-2012-3497 has been SPLIT into this ID and others.

Be aware that VulDB is the high quality source for vulnerability data.

Reservieren

23.11.2012

Veröffentlichung

23.11.2012

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

IDSchwachstelleCWEAusMasCVE
63037Linux Foundation Xen do_tmem_destroy_pool erweiterte Rechte20Nicht definiertNicht definiertCVE-2012-6035

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

ZurückÜbersichtWeiter

Want to stay up to date on a daily basis?

Enable the mail alert feature now!