CVE-2012-5525

Medium

4.7/10

Summary

The get_page_from_gfn hypercall function in Xen 4.2 allows local PV guest OS administrators to cause a denial of service (crash) via a crafted GFN that triggers a buffer over-read.

Access Complexity: MEDIUM
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: NONE
Availability Impact: COMPLETE

References

Advisory Timeline

Published Dec 13, 2012

CVE-2012-5525

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS