CVE-2013-4554

Published: Dec 24, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Xen 3.0.3 through 4.1.x (possibly 4.1.6.1), 4.2.x (possibly 4.2.3), and 4.3.x (possibly 4.3.1) does not properly prevent access to hypercalls, which allows local guest users to gain privileges via a crafted application running in ring 1 or 2.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

SUSE-SU-2014:0470

vendor-advisory

x_refsource_SUSE

RHSA-2014:0285

vendor-advisory

x_refsource_REDHAT

GLSA-201407-03

vendor-advisory

x_refsource_GENTOO

[oss-security] 20131126 Xen Security Advisory 76 (CVE-2013-4554) - Hypercalls exposed to privilege rings 1 and 2 of HVM guests

mailing-list

x_refsource_MLIST

SUSE-SU-2014:0372

vendor-advisory

x_refsource_SUSE

SUSE-SU-2014:0446

vendor-advisory

x_refsource_SUSE

SUSE-SU-2014:0411

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2013:1876

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-4554

Description

Affected Products

References