CVE - CVE-2013-0153

CVE-ID
CVE-2013-0153	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
The AMD IOMMU support in Xen 4.2.x, 4.1.x, 3.3, and other versions, when using AMD-Vi for PCI passthrough, uses the same interrupt remapping table for the host and all guests, which allows guests to cause a denial of service by injecting an interrupt into other guests.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:51881 URL:http://secunia.com/advisories/51881 MISC:55082 URL:http://secunia.com/advisories/55082 MISC:57745 URL:http://www.securityfocus.com/bid/57745 MISC:89867 URL:http://osvdb.org/89867 MISC:DSA-2636 URL:http://www.debian.org/security/2013/dsa-2636 MISC:GLSA-201309-24 URL:http://security.gentoo.org/glsa/glsa-201309-24.xml MISC:RHSA-2013:0847 URL:http://rhn.redhat.com/errata/RHSA-2013-0847.html MISC:SUSE-SU-2014:0446 URL:http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html MISC:[oss-security] 20130205 Xen Security Advisory 36 (CVE-2013-0153) - interrupt remap entries shared and old ones not cleared on AMD IOMMUs URL:http://www.openwall.com/lists/oss-security/2013/02/05/7 MISC:openSUSE-SU-2013:0636 URL:http://lists.opensuse.org/opensuse-updates/2013-04/msg00051.html MISC:openSUSE-SU-2013:0637 URL:http://lists.opensuse.org/opensuse-updates/2013-04/msg00052.html MISC:openSUSE-SU-2013:0912 URL:http://lists.opensuse.org/opensuse-updates/2013-06/msg00049.html MISC:xen-amdiommu-dos(81831) URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/81831
Assigning CNA
Red Hat, Inc.
Date Record Created
20121206	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20121206)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is a record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)