CVE-2011-3131

EPSS 0.05%

xen - denial of service

Published: 12/13/2012Modified: 3/9/2026

Also known as:DSA-2582-1DEBIAN-CVE-2011-3131

Description

Xen 4.1.1 and earlier allows local guest OS kernels with control of a PCI[E] device to cause a denial of service (CPU consumption and host hang) via many crafted DMA requests that are denied by the IOMMU, which triggers a livelock.

Affected packages (2)

Debian/xenfrom 0, < 4.1.2-1
Debian/xenfrom 0, < 4.0.1-5.5

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-3131