Описание
Use-after-free vulnerability in the xc_cpupool_getinfo function in Xen 4.1.x through 4.3.x, when using a multithreaded toolstack, does not properly handle a failure by the xc_cpumap_alloc function, which allows local users with access to management functions to cause a denial of service (heap corruption) and possibly gain privileges via unspecified vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 4.3.0-1ubuntu5 |
| lucid | DNE | |
| precise | released | 4.1.5-0ubuntu0.12.04.3 |
| quantal | released | 4.1.5-0ubuntu0.12.10.3 |
| saucy | released | 4.3.0-1ubuntu1.3 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| lucid | not-affected | |
| precise | DNE | |
| quantal | DNE | |
| saucy | DNE | |
| upstream | ignored | end of life |
Показывать по
EPSS
4.6 Medium
CVSS2
Связанные уязвимости
Use-after-free vulnerability in the xc_cpupool_getinfo function in Xen 4.1.x through 4.3.x, when using a multithreaded toolstack, does not properly handle a failure by the xc_cpumap_alloc function, which allows local users with access to management functions to cause a denial of service (heap corruption) and possibly gain privileges via unspecified vectors.
Use-after-free vulnerability in the xc_cpupool_getinfo function in Xen 4.1.x through 4.3.x, when using a multithreaded toolstack, does not properly handle a failure by the xc_cpumap_alloc function, which allows local users with access to management functions to cause a denial of service (heap corruption) and possibly gain privileges via unspecified vectors.
Use-after-free vulnerability in the xc_cpupool_getinfo function in Xen ...
Use-after-free vulnerability in the xc_cpupool_getinfo function in Xen 4.1.x through 4.3.x, when using a multithreaded toolstack, does not properly handle a failure by the xc_cpumap_alloc function, which allows local users with access to management functions to cause a denial of service (heap corruption) and possibly gain privileges via unspecified vectors.
EPSS
4.6 Medium
CVSS2