CVE-2012-3432
low
CVSS v3
—
CVSS v2
1.9
VIR risk
1.9
Description
The handle_mmio function in arch/x86/hvm/io.c in the MMIO operations emulator for Xen 3.3 and 4.x, when running an HVM guest, does not properly reset certain state information between emulation cycles, which allows local guest OS users to cause a denial of service (guest OS crash) via unspecified operations on MMIO regions.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2012-3432
Vendor advisory: secalert@redhat.com — http://lists.xen.org/archives/html/xen-devel/2012-07/msg01649.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| debian | bookworm | fixed | 4.1.3-1 |
| debian | bullseye | fixed | 4.1.3-1 |
| debian | forky | fixed | 4.1.3-1 |
| debian | sid | fixed | 4.1.3-1 |
| debian | trixie | fixed | 4.1.3-1 |
References
- http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00024.html
- http://lists.opensuse.org/opensuse-security-announce/2012-08/msg00025.html
- http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00017.html
- http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00018.html
- http://lists.xen.org/archives/html/xen-devel/2012-07/msg01649.html
- http://secunia.com/advisories/55082
- http://security.gentoo.org/glsa/glsa-201309-24.xml
- http://www.debian.org/security/2012/dsa-2531
- http://www.securityfocus.com/bid/54691
- https://security-tracker.debian.org/tracker/CVE-2012-3432
CWEs
CWE-264
Verify integrity in audit chain (admin only). AS-IS.