Lucene search

PRIOn knowledge basePRION:CVE-2013-1919

HistoryMay 13, 2013 - 11:55 p.m.

Design/Logic Flaw

2013-05-1323:55:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.7%

JSON

Xen 4.2.x and 4.1.x does not properly restrict access to IRQs, which allows local stub domain clients to gain access to IRQs and cause a denial of service via vectors related to “passed-through IRQs or PCI devices.”

CPENameOperatorVersion
xeneq4.1.5
xeneq4.1.2
xeneq4.1.1
xeneq4.1.0
xeneq4.1.3
xeneq4.1.4
xeneq4.2.2
xeneq4.2.0
xeneq4.2.1

Name	Operator	Version
xen	eq	4.1.5
xen	eq	4.1.2
xen	eq	4.1.1
xen	eq	4.1.0
xen	eq	4.1.3
xen	eq	4.1.4
xen	eq	4.2.2
xen	eq	4.2.0
xen	eq	4.2.1

References

lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html

lists.opensuse.org/opensuse-updates/2013-06/msg00049.html

secunia.com/advisories/55082

security.gentoo.org/glsa/glsa-201309-24.xml

www.debian.org/security/2013/dsa-2662

www.openwall.com/lists/oss-security/2013/04/18/6

www.securityfocus.com/bid/59292

lists.fedoraproject.org/pipermail/package-announce/2013-May/104537.html

lists.fedoraproject.org/pipermail/package-announce/2013-May/104538.html