QwikSec

Security Database

CVE

CWE

Training

CVE-2013-1952

Published: May 13, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, does not properly check the source when accessing a bridge device's interrupt remapping table entries for MSI interrupts, which allows local guest domains to cause a denial of service (interrupt injection) via unspecified vectors.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

FEDORA-2013-7432

vendor-advisory

x_refsource_FEDORA

vendor-advisory

x_refsource_GENTOO

vendor-advisory

x_refsource_DEBIAN

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

SUSE-SU-2014:0446

vendor-advisory

x_refsource_SUSE

xen-cve20131952-dos(83968)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_OSVDB

[oss-security] 20130502 Xen Security Advisory 49 (CVE-2013-1952) - VT-d interrupt remapping source validation flaw for bridges

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.