CVE-2013-3495

Published: Aug 28, 2013Modified: Apr 29, 2026

4.7

Vector

AV:L/AC:M/Au:N/C:N/I:N/A:C

Exploitability: 3.4 / Impact: 6.9

Source: NVD

Description

The Intel VT-d Interrupt Remapping engine in Xen 3.3.x through 4.3.x allows local guests to cause a denial of service (kernel panic) via a malformed Message Signaled Interrupt (MSI) from a PCI device that is bus mastering capable that triggers a System Error Reporting (SERR) Non-Maskable Interrupt (NMI).

Affected (25)

Products: Opensuse: Opensuse · Xen: Xen

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Opensuse Opensuse	Version 13.1
Opensuse Opensuse	Version 13.2

Configuration B

23 vulnerable

Vulnerable Software	Affected Versions
Xen Xen	Version 3.3.0
Xen Xen	Version 3.3.1
Xen Xen	Version 3.3.2
Xen Xen	Version 3.4.0
Xen Xen	Version 3.4.1
Xen Xen	Version 3.4.2
Xen Xen	Version 3.4.3
Xen Xen	Version 3.4.4
Xen Xen	Version 4.0.0
Xen Xen	Version 4.0.1
Xen Xen	Version 4.0.2
Xen Xen	Version 4.0.3
Xen Xen	Version 4.0.4
Xen Xen	Version 4.1.0
Xen Xen	Version 4.1.1
Xen Xen	Version 4.1.2
Xen Xen	Version 4.1.3
Xen Xen	Version 4.1.4
Xen Xen	Version 4.1.5
Xen Xen	Version 4.2.0
Xen Xen	Version 4.2.1
Xen Xen	Version 4.2.2
Xen Xen	Version 4.3.0

Related CWEs

References (16)

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html

Source: cve@mitre.org

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html

Source: cve@mitre.org

Third Party Advisory

http://osvdb.org/96438

Source: cve@mitre.org

Broken Link

http://secunia.com/advisories/54341

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2013/08/20/8

Source: cve@mitre.org

Mailing ListThird Party Advisory

http://www.securityfocus.com/bid/61854

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1028931

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://security.gentoo.org/glsa/201504-04

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00005.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00010.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://osvdb.org/96438

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://secunia.com/advisories/54341

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2013/08/20/8

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

http://www.securityfocus.com/bid/61854

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1028931

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://security.gentoo.org/glsa/201504-04

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.