CVE-2010-3699

Xen 3.x - Denial of Service via Kernel Thread Leak in Backend Driver

Title source: llm
STIX 2.1

Description

The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevents the device and guest OS from being shut down or create a zombie domain, causes a hang in zenwatch, or prevents unspecified xm commands from working properly, related to (1) netback, (2) blkback, or (3) blktap.

References (13)

Core 13
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42789
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/43056
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0024
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-0004.html
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/520102/100/0/threaded
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/46397
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1024786
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42372
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/45039
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0213

Scores

EPSS 0.0051
EPSS Percentile 66.5%

Details

CWE
CWE-399
Status published
Products (16)
citrix/xen 3.0.2
citrix/xen 3.0.3
citrix/xen 3.0.4
citrix/xen 3.1.3
citrix/xen 3.1.4
citrix/xen 3.2.0
citrix/xen 3.2.1
citrix/xen 3.2.2
citrix/xen 3.2.3
citrix/xen 3.3.0
... and 6 more
Published Dec 08, 2010
Tracked Since Feb 18, 2026