Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2011-2901

Off-by-one error in the __addr_ok macro in Xen 3.3 and earlier allows local 64 bit PV guest administrators to cause a denial of service (host crash) via unspecified hypercalls that ignore virtual-address bits.

  • Published: Oct 1, 2013
  • Updated: Apr 13, 2023
  • CVE: CVE-2011-2901
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5.5
  • AV:A/AC:L/Au:S/C:N/I:N/A:C

CWEs:

Software From Fixed in
xen / xen 3.2.0 3.2.0.x
xen / xen 3.2.1 3.2.1.x
xen / xen 3.0.4 3.0.4.x
xen / xen - 3.3.0.x
xen / xen 3.2.2 3.2.2.x
xen / xen 3.0.3 3.0.3.x
xen / xen 3.2.3 3.2.3.x
xen / xen 3.0.2 3.0.2.x
xen / xen 3.1.4 3.1.4.x
xen / xen 3.1.3 3.1.3.x