CVE-2013-4375

Priority
Description
The qdisk PV disk backend in qemu-xen in Xen 4.2.x and 4.3.x before 4.3.1,
and qemu 1.1 and other versions, allows local HVM guests to cause a denial
of service (domain grant reference consumption) via unspecified vectors.
Assigned-to
mdeslaur
Notes
jdstrandper upstream, xen 4.2 and later
per Xen team, qemu 1.1 and later
mdeslaurper smb, this is only in qemu packages, and we only really use
the one in saucy+
This is XSA-71
introduced in c6961b7d38317fd48a8e86a8c2be4b9aeeb71ac0
quantal file location is hw/xen_disk.c
Package
Source: qemu (LP Ubuntu Debian)
Upstream:needs-triage
Patches:
Other:xsa71-qemu-xen-4.2.patch
Upstream:http://git.qemu.org/?p=qemu.git;a=commit;h=a76f48e53382e6f039db6278443e3ce437653302
Package
Source: xen (LP Ubuntu Debian)
Upstream:needs-triage
Binaries built from this source package are in universe and so are supported by the community. For more details see https://wiki.ubuntu.com/SecurityTeam/FAQ#Official_Support
Package
Upstream:needs-triage
Binaries built from this source package are in universe and so are supported by the community. For more details see https://wiki.ubuntu.com/SecurityTeam/FAQ#Official_Support
More Information

Updated: 2020-03-18 22:13:16 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)