DescriptionThe qdisk PV disk backend in qemu-xen in Xen 4.2.x and 4.3.x before 4.3.1, and qemu 1.1 and other versions, allows local HVM guests to cause a denial of service (domain grant reference consumption) via unspecified vectors.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
qemu (PTS)bullseye1:5.2+dfsg-11+deb11u3fixed
bullseye (security)1:5.2+dfsg-11+deb11u2fixed
xen (PTS)bullseye4.14.6-1fixed
bullseye (security)4.14.5+94-ge49571868d-1fixed
sid, trixie4.17.3+36-g54dacb5c02-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
qemusourcesqueeze(not affected)
qemusourcewheezy(not affected)
qemusourcejessie(not affected)
qemu-kvmsource(unstable)(not affected)
xensourcesqueeze(not affected)
xensourcewheezy(not affected)
xen-qemu-dm-4.0source(unstable)(not affected)


[squeeze] - xen <not-affected> (Only affects 4.2 and later)
[wheezy] - xen <not-affected> (Only affects 4.2 and later)
[jessie] - qemu <not-affected> (Xen in Wheezy uses it's internal copy of qemu)
[wheezy] - qemu <not-affected> (Xen in Wheezy uses it's internal copy of qemu)
[squeeze] - qemu <not-affected> (vulnerable from version 1.1 onwards)
- qemu-kvm <not-affected> (This only affects Qemu in combination with Xen)
- xen-qemu-dm-4.0 <not-affected> (Affected code not yet present)
This is only exploitable in combination with Xen.
Xen in Squeeze uses a separate source package: xen-qemu-dm-4.0
Xen in Wheezy includes qemu
Xen after Wheezy uses qemu-system-x86 from qemu, marking 4.2 as pseudo fixed

Search for package or bug name: Reporting problems