Information
| Advisory | XSA-1 |
|---|
| Public release | 2011-03-14 11:00 |
|---|
| Updated | 2011-03-14 11:00 |
|---|
| Version | 1 |
|---|
| CVE(s) | CVE-2011-1166 |
|---|
| Title | Host crash due to failure to correctly validate PV kernel execution state |
|---|
Files
advisory-1.txt (signed advisory file)
Advisory
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Xen Security Advisory CVE-2011-1166 / XSA-1
Host crash due to failure to correctly validate PV kernel execution state
ISSUE DESCRIPTION
=================
Cannot specify user mode execution without specifying user-mode
pagetables. Failure to validate this allows a malicious or buggy
64 bit PV guest to crash the host.
nb: predates vulnerability handling process and therefore no formal
announcement
-----BEGIN PGP SIGNATURE-----
iQFABAEBCAAqFiEEI+MiLBRfRHX6gGCng/4UyVfoK9kFAmnLmaAMHHBncEB4ZW4u
b3JnAAoJEIP+FMlX6CvZ/8wH/jai7710M8fFEiuhizfPnApBt+4bI+0Q+EB8Wg9W
ISY9Dll3uydSxPtXlg9aroYAOqZS0m4MBgL1IMcOXolcNZoXSY9FB1+RXih/LldW
H2soNv8S1Jho5EmHUaS5PGDyJALQ+iSuE4x96tguf4XE4LaIF/h2sHKBnTzfBwlv
ZLufoaLitS5Hn6YWpxaA5L9XG7zgnd9TCbOTL05efrv/UiFdDyktVZ17314Ot5bG
B2/G7U99yGpSrCYttQ3e0DJC1RYlmfVv/A/4hWd5LxFX1FeOjKTmScHj7otcJPvc
23Qg6b4hHXcFVBHGRFnKmiWu+LrEibUQoPmy1xnV9CGow/s=
=usmh
-----END PGP SIGNATURE-----
Xenproject.org Security Team