Vigil@nce - Xen: denial of service via x86 Software Interrupts
September 2014 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker in a HVM guest system can generate software interrupts
on Xen, in order to trigger a denial of service.
– Impacted products: Unix (platform)
– Severity: 1/4
– Creation date: 23/09/2014
DESCRIPTION OF THE VULNERABILITY
The Xen product emulates x86 software interrupts.
However, the x86_emulate.c file does not check if users in a HVM
guest system are allowed to generate these interruptions.
An attacker in a HVM guest system can therefore generate software
interrupts on Xen, in order to trigger a denial of service.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Xen-denial-of-service-via-x86-Software-Interrupts-15392