CVE-2013-4369

Xen 4.2.x-4.3.x - Denial of Service via VIF Rate Configuration

Title source: llm
STIX 2.1

Description

The xlu_vif_parse_rate function in the libxlu library in Xen 4.2.x and 4.3.x allows local users to cause a denial of service (NULL pointer dereference) by using the "@" character as the VIF rate configuration.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/87798
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-201407-03.xml
Mailing List mailing-list x_refsource_mlist
http://www.openwall.com/lists/oss-security/2013/10/10/11

Scores

EPSS 0.0006
EPSS Percentile 17.9%

Details

Status published
Products (5)
xen/xen 4.2.0
xen/xen 4.2.1
xen/xen 4.2.2
xen/xen 4.2.3
xen/xen 4.3.0
Published Oct 17, 2013
Tracked Since Feb 18, 2026