Xen IOMMU Fault Processing May Let a Local Guest Administrative Users Deny Service on the Host Operating System
|
|
SecurityTracker Alert ID: 1025930 |
|
SecurityTracker URL: http://securitytracker.com/id/1025930
|
|
CVE Reference:
CVE-2011-3131
(Links to External Site)
|
Date: Aug 15 2011
|
Impact:
Denial of service via local system
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 4.1.1; possibly prior versions
|
Description:
A vulnerability was reported in Xen. A local user can cause denial of service conditions.
On systems where an untrusted virtual machine has direct control of a PCI[E] device, a local administrative user on the guest operating system can cause the device to issue excessive DMA requests to invalid addresses. This may cause a CPU to live-lock and possibly cause the host system to hang.
|
Impact:
A local administrative user on a guest operating system can performance to degrade and may be able to cause the host operating system to hang.
|
Solution:
The vendor has issued a source code fix, available at:
http://xenbits.xen.org/hg/staging/xen-4.1-testing.hg/rev/84e3706df07a
The vendor's advisory is available at:
http://www.gossamer-threads.com/lists/xen/devel/215181
|
Vendor URL: www.gossamer-threads.com/lists/xen/devel/215181 (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
Linux (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Mon, 15 Aug 2011 14:49:37 +0000
Subject: Xen
|
http://lists.xensource.com/archives/html/xen-devel/2011-06/msg01106.html
|
|
