Xen System Call Return Value Validation Flaw Lets Local Users Gain Elevated Privileges
|
|
SecurityTracker Alert ID: 1027166 |
|
SecurityTracker URL: http://securitytracker.com/id/1027166
|
|
CVE Reference:
CVE-2012-0217
(Links to External Site)
|
Updated: Jun 13 2012
|
Original Entry Date: Jun 13 2012
|
Impact:
Root access via local system
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 3.4, 4.0, 4.1
|
Description:
A vulnerability was reported in Xen. A local user on the guest operating system can obtain elevated privileges on the target host operating system.
A kernel-level sanity check does not properly validate user-supplied data on 64-bit hypervisors. A local user on the guest operating system can execute arbitrary code on the target system with host operating system privileges.
Intel CPUs are affected.
AMD CPUs are not affected.
Systems running HVM (fully-virtualised) are not affected. Systems running 32-bit PV guests only are not affected.
Rafal Wojtczuk reported this vulnerability.
|
Impact:
A local user on the guest operating system can gain privileges on the host operating system.
|
Solution:
The vendor has issued a patch.
The vendor's advisory is available at:
http://lists.xen.org/archives/html/xen-devel/2012-06/msg00670.html
|
Vendor URL: www.xen.org/ (Links to External Site)
|
Cause:
Input validation error
|
Underlying OS:
Linux (Any)
|
|
Message History:
None.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
