CVE-2012-4544

NONECVSS 0.0

0.0

The PV domain builder in Xen 4.2 and earlier does not validate the size of the kernel or ramdisk (1) before or (2) after decompression, which allows local guest administrators to cause a denial of service (domain 0 memory consumption) via a crafted (a) kernel or (b) ramdisk.

🔗 References (42)

secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2012-November/091832.html
secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2012-November/091844.html
secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2012-November/092050.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2012-11/msg00008.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2012-11/msg00009.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2014-03/msg00015.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2014-04/msg00000.html
secalert@redhathttp://osvdb.org/86619
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0241.html
secalert@redhathttp://secunia.com/advisories/51071
secalert@redhathttp://secunia.com/advisories/51324
secalert@redhathttp://secunia.com/advisories/51352

Is Your Infrastructure Affected by CVE-2012-4544?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-4544

📅 Published

🔄 Last Modified

🔗 References (42)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-4544?