27 Jul 2012
30 Jul 2012
DoS (Denial of Service)
This includes vulnerabilities ranging from excessive resource consumption (e.g. causing a system to use a lot of memory) to crashing an application or an entire system.
A vulnerability has been reported in Xen, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).
The vulnerability is caused due to certain data of MMIO operations not being handled properly after emulation cycles in HVM guests and can be exploited to crash subsequent emulations.
Successful exploitation requires that the guests are not PV (para-virtualised).
The vulnerability is reported in all supported versions.
Apply patch xsa10-4.x.patch.
Reported by the vendor.