CVE-2012-2625

Published: Oct 31, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

The PyGrub boot loader in Xen unstable before changeset 25589:60f09d1ab1fe, 4.2.x, and 4.1.x allows local para-virtualized guest users to cause a denial of service (memory consumption) via a large (1) bzip2 or (2) lzma compressed kernel image.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20121026 Xen Security Advisory 25 (CVE-2012-4544) - Xen domain builder Out-of-memory due to malicious kernel/ramdisk

mailing-list

x_refsource_MLIST

RHSA-2012:1130

vendor-advisory

x_refsource_REDHAT

51413

third-party-advisory

x_refsource_SECUNIA

http://bugzilla.xensource.com/bugzilla/show_bug.cgi?id=1817

x_refsource_MISC

SUSE-SU-2012:1135

vendor-advisory

x_refsource_SUSE

SUSE-SU-2012:1044

vendor-advisory

x_refsource_SUSE

53650

vdb-entry

x_refsource_BID

openSUSE-SU-2012:1572

vendor-advisory

x_refsource_SUSE

1027090

vdb-entry

x_refsource_SECTRACK

SUSE-SU-2012:1043

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2012:1174

vendor-advisory

x_refsource_SUSE

http://xenbits.xensource.com/hg/xen-unstable.hg/rev/60f09d1ab1fe

x_refsource_CONFIRM

openSUSE-SU-2012:1573

vendor-advisory

x_refsource_SUSE

49184

third-party-advisory

x_refsource_SECUNIA

openSUSE-SU-2012:1172

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-2625

Description

Affected Products

References