Denial of Service Vulnerability in Xen Hypervisor by Citrix
CVE-2011-3262

Currently unrated

Key Information:

Vendor: Citrix
Status: Xen
Vendor: CVE Published:; 19 August 2011

Summary

The vulnerability arises from a lack of proper error checking within the decompression loop of the Xen Hypervisor. This oversight can be leveraged by local users to trigger an infinite loop within the management software, leading to excessive resource consumption in the management domain. Such conditions can result in significant disruptions to services and impair the overall functionality of the hypervisor, making it a critical area for administrators to monitor and secure.

References

http://secunia.com/advisories/55082

third-party-advisoryx_refsource_SECUNIA

http://security.gentoo.org/glsa/glsa-201309-24.xml

vendor-advisoryx_refsource_GENTOO

http://lists.xensource.com/archives/html/xen-devel/2011-0...

mailing-listx_refsource_MLIST

Timeline

Vulnerability published
Aug 19, 2011
Vulnerability Reserved
Aug 19, 2011