DescriptionThe backend for XenSource Xen Para Virtualized Frame Buffer (PVFB) in Xen ioemu does not properly restrict the frame buffer size, which allows attackers to cause a denial of service (crash) by mapping an arbitrary amount of guest memory.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
Debian Bugs487095

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
xen-unstablesource(unstable)(not affected)


- xen-unstable <not-affected> (Vulnerable code not present, introduced in changeset 17630)
vulnerable code no longer present as of xen 3.4 (xenfb.c has been removed)

Search for package or bug name: Reporting problems