CVE-2013-4553 — Improper Restriction of Operations within the Bounds of a Memory Buffer in XEN

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents6 sources

Severity

5.2MEDIUMNVD

EPSS

0.3%

top 44.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN

Timeline

PublishedDec 24

Latest updateMay 17

Description

The XEN_DOMCTL_getmemlist hypercall in Xen 3.4.x through 4.3.x (possibly 4.3.1) does not always obtain the page_alloc_lock and mm_rwlock in the same order, which allows local guest administrators to cause a denial of service (host deadlock).

CVSS vector

AV:A/AC:M/C:N/I:N/A:CExploitability: 4.4 | Impact: 6.9

Affected Packages3 packages

▶debiandebian/xen< xen 4.4.0-1 (bookworm)

▶Debianxen/xen< 4.4.0-1+3

▶NVDxen/xen23 versions+22

🔴Vulnerability Details

GHSA

GHSA-gp79-c384-6cqv: The XEN_DOMCTL_getmemlist hypercall in Xen 3↗2022-05-17

▶

OSV

CVE-2013-4553: The XEN_DOMCTL_getmemlist hypercall in Xen 3↗2013-12-24

▶

📋Vendor Advisories

Red Hat

kernel: xen: lock order reversal between page_alloc_lock and mm_rwlock↗2013-11-26

▶

Debian

CVE-2013-4553: xen - The XEN_DOMCTL_getmemlist hypercall in Xen 3.4.x through 4.3.x (possibly 4.3.1) ...↗2013

▶

💬Community

Bugzilla

CVE-2013-4553 kernel: xen: lock order reversal between page_alloc_lock and mm_rwlock [fedora-all]↗2013-11-26

▶

Bugzilla

CVE-2013-4553 kernel: xen: lock order reversal between page_alloc_lock and mm_rwlock↗2013-11-11

▶