CVE-2010-4255

The fixup_page_fault function in arch/x86/traps.c in Xen 4.0.1 and earlier on 64-bit platforms, when paravirtualization is enabled, does not verify that kernel mode is used to call the handle_gdt_ldt_mapping_fault function, which allows guest OS users to cause a denial of service (host OS BUG_ON) via a crafted memory access.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.1 UNKNOWN
ADJACENT_NETWORK
LOW
AV:A/AC:L/Au:N/C:N/I:N/A:C
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 73%
VendorProductVersion
citrixxen
𝑥
≤ 4.0.1
citrixxen
3.0.2
citrixxen
3.0.3
citrixxen
3.0.4
citrixxen
3.1.2
citrixxen
3.1.3
citrixxen
3.1.4
citrixxen
3.2.0
citrixxen
3.2.1
citrixxen
3.2.2
citrixxen
3.2.3
citrixxen
3.3.0
citrixxen
3.3.1
citrixxen
3.3.2
citrixxen
3.4.0
citrixxen
3.4.1
citrixxen
3.4.2
citrixxen
3.4.3
citrixxen
4.0.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
xen
bullseye
4.14.6-1
fixed
bullseye (security)
4.14.5+94-ge49571868d-1
fixed
bookworm
4.17.3+10-g091466ba55-1~deb12u1
fixed
sid
4.17.3+36-g54dacb5c02-1
fixed
trixie
4.17.3+36-g54dacb5c02-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
xen
saucy
not-affected
raring
not-affected
quantal
not-affected
precise
not-affected
oneiric
not-affected
natty
dne
maverick
dne
lucid
dne
karmic
dne
hardy
dne
dapper
ignored
xen-3.1
saucy
dne
raring
dne
quantal
dne
precise
dne
oneiric
dne
natty
dne
maverick
dne
lucid
dne
karmic
dne
hardy
ignored
dapper
dne
xen-3.2
saucy
dne
raring
dne
quantal
dne
precise
dne
oneiric
dne
natty
dne
maverick
dne
lucid
dne
karmic
dne
hardy
ignored
dapper
dne
xen-3.3
saucy
dne
raring
dne
quantal
dne
precise
dne
oneiric
dne
natty
ignored
maverick
ignored
lucid
ignored
karmic
ignored
hardy
dne
dapper
dne