The XEN_DOMCTL_getmemlist hypercall in Xen 3.4.x through 4.3.x (possibly 4.3.1) does not always obtain the page_alloc_lock and mm_rwlock in the same order, which allows local guest administrators to cause a denial of service (host deadlock).
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2013-12-24 11:55
Updated : 2017-01-06 18:59
NVD link : CVE-2013-4553
Mitre link : CVE-2013-4553
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
xen
- xen