CVE-2012-6035 in Xen
요약 (영어)
The do_tmem_destroy_pool function in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 does not properly validate pool ids, which allows local guest OS users to cause a denial of service (memory corruption and host crash) or execute arbitrary code via unspecified vectors. NOTE: this issue was originally published as part of CVE-2012-3497, which was too general; CVE-2012-3497 has been SPLIT into this ID and others.
Be aware that VulDB is the high quality source for vulnerability data.
예약하다
2012. 11. 23.
공개
2012. 11. 23.
상태
확인됨
엔트리
VulDB provides additional information and datapoints for this CVE:
| 아이디 | 취약성 | CWE | 악용 | 대책 | CVE |
|---|---|---|---|---|---|
| 63037 | Linux Foundation Xen do_tmem_destroy_pool 권한 상승 | 20 | 정의되지 않음 | 정의되지 않음 | CVE-2012-6035 |