CVE-2010-3699
published 2010-12-08CVE-2010-3699: The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevents the device and guest OS from being…
PriorityP410low2.7CVSS 2.0
AVAACLAuSCNINAP
EPSS
0.71%
49.0th percentile
The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevents the device and guest OS from being shut down or create a zombie domain, causes a hang in zenwatch, or prevents unspecified xm commands from working properly, related to (1) netback, (2) blkback, or (3) blktap.
Affected
19 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| citrix | xen | — | — |
| vmware | vmware_esxi | — | — |
| vmware | vmware_workstation | — | — |
| vmware | vsphere | — | — |
CVSS provenance
nvdv2.02.7LOWAV:A/AC:L/Au:S/C:N/I:N/A:P
vendor_ubuntu4.6MEDIUM
vendor_redhat2.7LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VMware
VMware ESX third party updates for Service Console packages glibc and dhcp
vendor_vmware·2011-10-12·CVSS 4.7
CVE-2010-0296 [MEDIUM] VMware ESX third party updates for Service Console packages glibc and dhcp
VMSA-2011-0012: VMware ESX third party updates for Service Console packages glibc and dhcp
a. ESX third party update for Service Console kernel This update takes the console OS kernel package to kernel-2.6.18-238.9.1 which resolves multiple security issues. The Common Vulnerabilities and Exposures project ( cve.mitre.org) has assigned the names CVE-2010-1083, CVE-2010-2492, CVE-2010-2798, CVE-2010-2938, CVE-2010-2942, CVE-2010-2943, CVE-2010-3015, CVE-2010-3066, CVE-2010-3067, CVE-2010-3078, CVE-2010-3086, CVE-2010-3296, CVE-2010-3432, CVE-2010-3442, CVE-2010-3477, CVE-2010-3699, CVE-2010-3858, CVE-2010-3859, CVE-2010-3865, CVE-2010-3876, CVE-2010-3877, CVE-2010-3880, CVE-2010-3904, CVE-2010-4072, CVE-2010-4073, CVE-2010-4075, CVE-2010-4080, CVE-2010-4081, CVE-2010-4083, CVE-2010-4157, CV
Ubuntu
Linux kernel vulnerabilities
vendor_ubuntu·2011-02-25·CVSS 4.6
CVE-2010-3699 [MEDIUM] Linux kernel vulnerabilities
Title: Linux kernel vulnerabilities
Summary: Multiple kernel flaws.
Gleb Napatov discovered that KVM did not correctly check certain privileged
operations. A local attacker with access to a guest kernel could exploit
this to crash the host system, leading to a denial of service.
(CVE-2010-0435)
Dave Chinner discovered that the XFS filesystem did not correctly order
inode lookups when exported by NFS. A remote attacker could exploit this to
read or write disk blocks that had changed file assignment or had become
unlinked, leading to a loss of privacy. (CVE-2010-2943)
Dan Rosenberg discovered that several network ioctls did not clear kernel
memory correctly. A local user could exploit this to read kernel stack
memory, leading to a loss of privacy. (CVE-2010-3296, CVE-2010-3297)
Dan Jaco
Red Hat
kernel: guest->host denial of service from invalid xenbus transitions
vendor_redhat·2010-11-24·CVSS 2.7
CVE-2010-3699 [LOW] kernel: guest->host denial of service from invalid xenbus transitions
kernel: guest->host denial of service from invalid xenbus transitions
The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevents the device and guest OS from being shut down or create a zombie domain, causes a hang in zenwatch, or prevents unspecified xm commands from working properly, related to (1) netback, (2) blkback, or (3) blktap.
GHSA
GHSA-897j-59mc-qfvp: The backend driver in Xen 3
ghsa_unreviewed·2022-05-14
CVE-2010-3699 [LOW] GHSA-897j-59mc-qfvp: The backend driver in Xen 3
The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevents the device and guest OS from being shut down or create a zombie domain, causes a hang in zenwatch, or prevents unspecified xm commands from working properly, related to (1) netback, (2) blkback, or (3) blktap.
Kernel
blkback: Fix CVE-2010-3699
kernel_security·2010-11-24·CVSS 2.7
CVE-2010-3699 [LOW] blkback: Fix CVE-2010-3699
blkback: Fix CVE-2010-3699
A guest can cause the backend driver to leak a kernel thread. Such
leaked threads hold references to the device, whichmakes the device
impossible to tear down. If shut down, the guest remains a zombie
domain, the xenwatch process hangs, and most xm commands will stop
working.
This patch tries to do the following for blkback:
- identify/extract idempotent teardown operations,
- add/move the invocation of said teardown operation
right before we're about to allocate new resources in the
Connected states.
[ linux-2.6.18-xen.hg 59f097ef181b ]
Signed-off-by: Laszlo Ersek
Signed-off-by: Keir Fraser
Signed-off-by: Jeremy Fitzhardinge
No detection rules found.
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00007.htmlhttp://secunia.com/advisories/42372http://secunia.com/advisories/42789http://secunia.com/advisories/43056http://secunia.com/advisories/46397http://www.redhat.com/support/errata/RHSA-2011-0004.htmlhttp://www.securityfocus.com/archive/1/520102/100/0/threadedhttp://www.securityfocus.com/bid/45039http://www.securitytracker.com/id?1024786http://www.vmware.com/security/advisories/VMSA-2011-0012.htmlhttp://www.vupen.com/english/advisories/2011/0024http://www.vupen.com/english/advisories/2011/0213http://xenbits.xensource.com/linux-2.6.18-xen.hg?rev/59f097ef181bhttp://lists.opensuse.org/opensuse-security-announce/2011-01/msg00007.htmlhttp://secunia.com/advisories/42372http://secunia.com/advisories/42789http://secunia.com/advisories/43056http://secunia.com/advisories/46397http://www.redhat.com/support/errata/RHSA-2011-0004.htmlhttp://www.securityfocus.com/archive/1/520102/100/0/threadedhttp://www.securityfocus.com/bid/45039http://www.securitytracker.com/id?1024786http://www.vmware.com/security/advisories/VMSA-2011-0012.htmlhttp://www.vupen.com/english/advisories/2011/0024http://www.vupen.com/english/advisories/2011/0213http://xenbits.xensource.com/linux-2.6.18-xen.hg?rev/59f097ef181b
2010-12-08
Published