CVE-2011-1936

EUVD-2011-1934
Xen, when using x86 Intel processors and the VMX virtualization extension is enabled, does not properly handle cpuid instruction emulation when exiting the VM, which allows local guest users to cause a denial of service (guest crash) via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.6 UNKNOWN
ADJACENT_NETWORK
HIGH
AV:A/AC:H/Au:N/C:N/I:N/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 24%
Affected Products (NVD)
VendorProductVersion
xenxen
-
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
xen
hardy
dne
lucid
dne
maverick
dne
natty
dne
oneiric
not-affected
precise
not-affected
quantal
not-affected
xen-3.1
hardy
not-affected
lucid
dne
maverick
dne
natty
dne
oneiric
dne
precise
dne
quantal
dne
xen-3.2
hardy
not-affected
lucid
dne
maverick
dne
natty
dne
oneiric
dne
precise
dne
quantal
dne
xen-3.3
hardy
dne
lucid
not-affected
maverick
ignored
natty
ignored
oneiric
dne
precise
dne
quantal
dne
References
http://rhn.redhat.com/errata/RHSA-2011-0927.html
http://www.openwall.com/lists/oss-security/2011/07/07/3
http://rhn.redhat.com/errata/RHSA-2011-0927.html
http://www.openwall.com/lists/oss-security/2011/07/07/3