CVE-2012-4537
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2012-4537
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2012-4537.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2012-4537
- Downstream
- Related
- Published
- 2012-11-21T23:55:02Z
- Modified
- 2025-08-09T20:01:26Z
- Summary
- [none]
- Details
-
Xen 3.4 through 4.2, and possibly earlier versions, does not properly synchronize the p2m and m2p tables when the setp2mentry function fails, which allows local HVM guest OS administrators to cause a denial of service (memory consumption and assertion failure), aka "Memory mapping failure DoS vulnerability."
- References
-
- http://lists.xen.org/archives/html/xen-announce/2012-11/msg00005.html
- http://rhn.redhat.com/errata/RHSA-2012-1540.html
- http://secunia.com/advisories/51200
- http://secunia.com/advisories/51324
- http://secunia.com/advisories/51352
- http://secunia.com/advisories/51413
- http://secunia.com/advisories/51468
- http://secunia.com/advisories/55082
- http://security.gentoo.org/glsa/glsa-201309-24.xml
- http://www.debian.org/security/2012/dsa-2582
- https://security.gentoo.org/glsa/201604-03
- http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00008.html
- http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00009.html
- http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html
- http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html
- http://lists.opensuse.org/opensuse-security-announce/2012-12/msg00001.html
- http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html
- http://lists.opensuse.org/opensuse-security-announce/2014-04/msg00000.html
- http://osvdb.org/87307
- http://www.openwall.com/lists/oss-security/2012/11/13/6
- http://www.securityfocus.com/bid/56498
- http://www.securitytracker.com/id?1027761
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80024