Array Index Error in Xen Affects Various Products
CVE-2012-5512

Currently unrated

Key Information:

Vendor: Citrix
Status: Xenserver
Vendor: CVE Published:; 13 December 2012

Summary

An array index error found in the HVMOP_set_mem_access handler of Xen 4.1 can be exploited by local HVM guest OS administrators. This vulnerability may lead to a denial of service, causing system crashes, or could potentially allow unauthorized access to sensitive information through unexplained vectors. Prompt updates and security measures are necessary to safeguard systems running affected Xen versions.

References

http://secunia.com/advisories/55082

third-party-advisoryx_refsource_SECUNIA

http://lists.opensuse.org/opensuse-security-announce/2013...

vendor-advisoryx_refsource_SUSE

http://www.securityfocus.com/bid/56799

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Dec 13, 2012
Vulnerability Reserved
Oct 24, 2012