Описание
The ocaml binding for the xc_vcpu_getaffinity function in Xen 4.2.x and 4.3.x frees certain memory that may still be intended for use, which allows local users to cause a denial of service (heap corruption and crash) and possibly execute arbitrary code via unspecified vectors that trigger a (1) use-after-free or (2) double free.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 4.3.0-1ubuntu2 |
| lucid | DNE | |
| precise | not-affected | |
| quantal | not-affected | 4.1.3-3ubuntu1.7 |
| raring | released | 4.2.2-0ubuntu0.13.04.2 |
| saucy | released | 4.3.0-1ubuntu1.1 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | not-affected | 3.3.0-1ubuntu11 |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| saucy | DNE | |
| upstream | ignored | end of life |
Показывать по
EPSS
4.6 Medium
CVSS2
Связанные уязвимости
The ocaml binding for the xc_vcpu_getaffinity function in Xen 4.2.x and 4.3.x frees certain memory that may still be intended for use, which allows local users to cause a denial of service (heap corruption and crash) and possibly execute arbitrary code via unspecified vectors that trigger a (1) use-after-free or (2) double free.
The ocaml binding for the xc_vcpu_getaffinity function in Xen 4.2.x and 4.3.x frees certain memory that may still be intended for use, which allows local users to cause a denial of service (heap corruption and crash) and possibly execute arbitrary code via unspecified vectors that trigger a (1) use-after-free or (2) double free.
The ocaml binding for the xc_vcpu_getaffinity function in Xen 4.2.x an ...
The ocaml binding for the xc_vcpu_getaffinity function in Xen 4.2.x and 4.3.x frees certain memory that may still be intended for use, which allows local users to cause a denial of service (heap corruption and crash) and possibly execute arbitrary code via unspecified vectors that trigger a (1) use-after-free or (2) double free.
EPSS
4.6 Medium
CVSS2