Lucene search

K

Veracode Vulnerability DatabaseVERACODE:24492

HistoryApr 10, 2020 - 12:55 a.m.

Denial Of Service (DoS)

2020-04-1000:55:42

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

16

EPSS

0.001

Percentile

35.1%

kernel is vulnerable to denial of service (DoS). The vulnerability exists through a missing sanity check was found in vbd_create() in the Xen hypervisor implementation. As CD-ROM drives are not supported by the blkback back-end driver, attempting to use a virtual CD-ROM drive with blkback could trigger a denial of service (crash) on the host system running the Xen hypervisor.

References

bugs.centos.org/bug_view_advanced_page.php?bug_id=4517

docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/5.6_Release_Notes/index.html

docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/5.6_Technical_Notes/kernel.html

secunia.com/advisories/42884

secunia.com/advisories/46397

www.redhat.com/support/errata/RHSA-2011-0017.html

www.securityfocus.com/archive/1/520102/100/0/threaded

www.securityfocus.com/bid/45795

www.vmware.com/security/advisories/VMSA-2011-0012.html

access.redhat.com/errata/RHSA-2011:0017

access.redhat.com/security/updates/classification/#important

bugzilla.redhat.com/show_bug.cgi?id=655623

exchange.xforce.ibmcloud.com/vulnerabilities/64698

EPSS

0.001

Percentile

35.1%

Related for VERACODE:24492

prion1 cvelist1 nvd1 cve1 ubuntucve1 nessus5 openvas7 redhat1 ubuntu1 oraclelinux1 vmware2