CVE-2010-4247
11.01.2011, 03:00
The do_block_io_op function in (1) drivers/xen/blkback/blkback.c and (2) drivers/xen/blktap/blktap.c in Xen before 3.4.0 for the Linux kernel 2.6.18, and possibly other versions, allows guest OS users to cause a denial of service (infinite loop and CPU consumption) via a large production request index to the blkback or blktap back-end drivers. NOTE: some of these details are obtained from third party information.Enginsight
| Vendor | Product | Version |
|---|---|---|
| citrix | xen | 𝑥 ≤ 3.3.2 |
| citrix | xen | 3.0.2 |
| citrix | xen | 3.0.3 |
| citrix | xen | 3.0.4 |
| citrix | xen | 3.1.3 |
| citrix | xen | 3.1.4 |
| citrix | xen | 3.2.0 |
| citrix | xen | 3.2.1 |
| citrix | xen | 3.2.2 |
| citrix | xen | 3.2.3 |
| citrix | xen | 3.3.0 |
| citrix | xen | 3.3.1 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Ubuntu Product | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| linux |
| ||||||||||||
| linux-ec2 |
| ||||||||||||
| linux-fsl-imx51 |
| ||||||||||||
| linux-lts-backport-maverick |
| ||||||||||||
| linux-lts-backport-natty |
| ||||||||||||
| linux-mvl-dove |
| ||||||||||||
| linux-source-2.6.15 |
| ||||||||||||
| linux-ti-omap4 |
| ||||||||||||
| xen-3.1 |
|
Common Weakness Enumeration
References