CVE-2012-6032Out-of-bounds Write in XEN

6 documents6 sources
Severity
4.9MEDIUMNVD
OSV6.9
EPSS
0.1%
top 70.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
XENDebian XEN
Timeline
PublishedNov 23
Latest updateMay 17

Description

Multiple integer overflows in the (1) tmh_copy_from_client and (2) tmh_copy_to_client functions in the Transcendent Memory (TMEM) in Xen 4.0, 4.1, and 4.2 allow local guest OS users to cause a denial of service (memory corruption and host crash) via unspecified vectors. NOTE: this issue was originally published as part of CVE-2012-3497, which was too general; CVE-2012-3497 has been SPLIT into this ID and others.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages3 packages

debiandebian/xen< xen 4.1.4-1 (bookworm)
Debianxen/xen< 4.1.4-1+3
NVDxen/xen4.0.0, 4.1.0, 4.2.0+2

🔴Vulnerability Details

2
GHSA
GHSA-7c3m-cjc4-58wg: Multiple integer overflows in the (1) tmh_copy_from_client and (2) tmh_copy_to_client functions in the Transcendent Memory (TMEM) in Xen 42022-05-17
OSV
CVE-2012-6032: Multiple integer overflows in the (1) tmh_copy_from_client and (2) tmh_copy_to_client functions in the Transcendent Memory (TMEM) in Xen 42012-11-23

📋Vendor Advisories

2
Debian
CVE-2012-6032: xen - Multiple integer overflows in the (1) tmh_copy_from_client and (2) tmh_copy_to_c...2012
Red Hat
CVE-2012-6032: Multiple integer overflows in the (1) tmh_copy_from_client and (2) tmh_copy_to_client functions in the Transcendent Memory (TMEM) in Xen 4

💬Community

1
Bugzilla
CVE kernel non-issue statements2010-05-13