CVE-2011-2901 — Off-by-one Error in XEN

CWE-399 CWE-193 — Off-by-one Error8 documents6 sources

Severity

5.5MEDIUMNVD

EPSS

0.1%

top 69.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN

Timeline

PublishedOct 1

Latest updateMay 17

Description

Off-by-one error in the __addr_ok macro in Xen 3.3 and earlier allows local 64 bit PV guest administrators to cause a denial of service (host crash) via unspecified hypercalls that ignore virtual-address bits.

CVSS vector

AV:A/AC:L/C:N/I:N/A:CExploitability: 5.1 | Impact: 6.9

Affected Packages2 packages

▶NVDxen/xen3.3.0+9

▶debiandebian/xen

🔴Vulnerability Details

GHSA

GHSA-596h-97jg-mfff: Off-by-one error in the __addr_ok macro in Xen 3↗2022-05-17

▶

📋Vendor Advisories

Red Hat

kernel: xen: off-by-one shift in x86_64 __addr_ok()↗2011-08-30

▶

Debian

CVE-2011-2901: xen - Off-by-one error in the __addr_ok macro in Xen 3.3 and earlier allows local 64 b...↗2011

▶

💬Community

Bugzilla

CVE-2011-2901 kernel: xen: off-by-one shift in x86_64 __addr_ok() [fedora-all]↗2012-03-01

▶

Bugzilla

CVE-2011-2901 kernel: xen: off-by-one shift in x86_64 __addr_ok()↗2011-08-04

▶