Xen PVFB Format Validation Bug Lets Local Users Deny Service or Gain Elevated Privileges
|
|
SecurityTracker Alert ID: 1020009
|
|
SecurityTracker URL: http://securitytracker.com/id?1020009
|
|
CVE Reference: CVE-2008-1944
(Links to External Site)
|
Date: May 13 2008
|
Impact: Denial of service via local system, User access via local system
|
Description: A vulnerability was reported in Xen. A local user can obtain elevated privileges on the target system. A local user can cause denial of service conditions.
The hypervisor's para-virtualized framebuffer (PVFB) backend does not properly validate the format of user-supplied input that update
the frontend's framebuffer. A local user can supply a specially crafted value to cause the backend to crash or potentially execute
arbitrary code in the privileged domain (dom0).
Daniel P. Berrange reported this vulnerability.
|
Impact: A local user can obtain elevated privileges on the target system.
A local user can cause denial of service conditions on the target system.
|
Solution: No solution was available at the time of this entry.
[Editor's note: A fix is available for Red Hat Enterprise Linux. A separate Alert will be issued for Red Hat.]
|
Vendor URL: www.xensource.com/ (Links to External Site)
|
Cause: Input validation error
|
Underlying OS: Linux (Any), UNIX (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Tue, 13 May 2008 08:41:38 -0400
Subject: Xen
|
CVE-2008-1944
|
|
