CVE-2010-4247 — Improper Input Validation in Citrix XEN

CWE-20 — Improper Input Validation6 documents6 sources

Severity

5.5MEDIUMNVD

EPSS

0.6%

top 30.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Citrix XEN Vmware Esxi Vmware Workstation +1 more

Timeline

PublishedJan 11

Latest updateMay 14

Description

The do_block_io_op function in (1) drivers/xen/blkback/blkback.c and (2) drivers/xen/blktap/blktap.c in Xen before 3.4.0 for the Linux kernel 2.6.18, and possibly other versions, allows guest OS users to cause a denial of service (infinite loop and CPU consumption) via a large production request index to the blkback or blktap back-end drivers. NOTE: some of these details are obtained from third party information.

CVSS vector

AV:A/AC:L/C:N/I:N/A:CExploitability: 5.1 | Impact: 6.9

Affected Packages4 packages

▶NVDcitrix/xen3.3.2+11

▶vmwarevmware/vsphere

▶vmwarevmware/vmware_esxi

▶vmwarevmware/vmware_workstation

Patches

Patch: www.openwall.com ↗Patch: www.openwall.com ↗Patch: xenbits.xensource.com ↗

🔴Vulnerability Details

GHSA

GHSA-9hwc-j324-r98v: The do_block_io_op function in (1) drivers/xen/blkback/blkback↗2022-05-14

▶

📋Vendor Advisories

VMware

VMware ESX third party updates for Service Console packages glibc and dhcp↗2011-10-12

▶

Ubuntu

Linux kernel vulnerabilities↗2011-07-15

▶

Red Hat

xen: request-processing loop is unbounded in blkback↗2008-01-18

▶

💬Community

Bugzilla

CVE-2010-4247 xen: request-processing loop is unbounded in blkback↗2010-11-23

▶