CVE-2012-3494

EPSS 0.11%

xen - denial of service

Published: 11/23/2012Modified: 4/28/2026

Description

The set_debugreg hypercall in include/asm-x86/debugreg.h in Xen 4.0, 4.1, and 4.2, and Citrix XenServer 6.0.2 and earlier, when running on x86-64 systems, allows local OS guest users to cause a denial of service (host crash) by writing to the reserved bits of the DR7 debug control register.

Affected packages (2)

Debian/xenfrom 0, < 4.1.3-2
Debian/xenfrom 0, < 4.0.1-5.4

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-3494