SecuritySpace - CVE-2012-3498

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID:	CVE-2012-3498
Description:	PHYSDEVOP_map_pirq in Xen 4.1 and 4.2 and Citrix XenServer 6.0.2 and earlier allows local HVM guest OS kernels to cause a denial of service (host crash) and possibly read hypervisor or guest memory via vectors related to a missing range check of map->index.
Test IDs:	1.3.6.1.4.1.25623.1.1.4.2012.1133.1 1.3.6.1.4.1.25623.1.1.4.2012.1132.1
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2012-3498 1027483 http://securitytracker.com/id?1027483 50472 http://secunia.com/advisories/50472 50530 http://secunia.com/advisories/50530 51413 http://secunia.com/advisories/51413 55082 http://secunia.com/advisories/55082 55414 http://www.securityfocus.com/bid/55414 85198 http://osvdb.org/85198 GLSA-201309-24 http://security.gentoo.org/glsa/glsa-201309-24.xml GLSA-201604-03 https://security.gentoo.org/glsa/201604-03 SUSE-SU-2012:1132 http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00003.html SUSE-SU-2012:1133 http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00004.html [Xen-announce] 20120905 Xen Security Advisory 16 (CVE-2012-3498) - PHYSDEVOP_map_pirq index vulnerability http://lists.xen.org/archives/html/xen-announce/2012-09/msg00005.html [oss-security] 20120905 Xen Security Advisory 16 (CVE-2012-3498) - PHYSDEVOP_map_pirq index vulnerability http://www.openwall.com/lists/oss-security/2012/09/05/9 http://support.citrix.com/article/CTX134708 http://support.citrix.com/article/CTX134708 http://wiki.xen.org/wiki/Security_Announcements#XSA-16_PHYSDEVOP_map_pirq_index_vulnerability http://wiki.xen.org/wiki/Security_Announcements#XSA-16_PHYSDEVOP_map_pirq_index_vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=851193 https://bugzilla.redhat.com/show_bug.cgi?id=851193 openSUSE-SU-2012:1172 http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00017.html openSUSE-SU-2012:1572 http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html openSUSE-SU-2012:1573 http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html xen-physdevopmappirq-dos(78269) https://exchange.xforce.ibmcloud.com/vulnerabilities/78269