CVE-2011-1166
Xen < 4.0.1 - Denial of Service via PV Guest User Mode Execution
Title source: llmDescription
Xen, possibly before 4.0.2, allows local 64-bit PV guests to cause a denial of service (host crash) by specifying user mode execution without user-mode pagetables.
References (3)
Core 3
Core References
Patch, Vendor Advisory x_refsource_confirm
http://wiki.xen.org/wiki/Security_Announcements#XSA-1_Host_crash_due_to_failure_to_correctly_validate_PV_kernel_execution_state.
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2011-0833.html
Various Sources x_refsource_confirm
http://downloads.avaya.com/css/P8/documents/100145416
Scores
EPSS
0.0010
EPSS Percentile
28.1%
Details
CWE
CWE-20
Status
published
Products (19)
xen/xen
3.0.2
xen/xen
3.0.3
xen/xen
3.0.4
xen/xen
3.1.3
xen/xen
3.1.4
xen/xen
3.2.0
xen/xen
3.2.1
xen/xen
3.2.2
xen/xen
3.2.3
xen/xen
3.3.0
... and 9 more
Published
Jan 07, 2014
Tracked Since
Feb 18, 2026