Vigil@nce - Xen: denial of service via Deadlock
December 2013 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker, who is administrator in a Xen guest system, can
generate a deadlock, in order to trigger a denial of service on
the host.
Impacted products: Fedora, Unix (platform)
Severity: 2/4
Creation date: 26/11/2013
DESCRIPTION OF THE VULNERABILITY
Locks are used to ensure the exclusivity of the access to a
resource.
Two locks are used by the Xen memory manager: page_alloc_lock and
mm_rwlock. However, these locks are not always activated in the
same order. A deadlock situation can then occur.
An attacker, who is administrator in a Xen guest system, can
therefore generate a deadlock, in order to trigger a denial of
service on the host.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Xen-denial-of-service-via-Deadlock-13833