Xen "xen_failsafe_callback()" IRET Handling Denial
Xen "xen_failsafe_callback()" IRET Handling Denial of Service Weakness
Release Date : 2013-01-16
Criticality level : Not critical
Impact : DoS
Where : Local system
Solution Status : Vendor Workaround
Software: Xen 3.x
A weakness has been reported in Xen, which can be exploited by malicious, local users in a guest virtual machine to cause a DoS (Denial of Service).
The weakness is caused due to an error within "xen_failsafe_callback()" when handling a failed IRET (Interrupt Return) and can be exploited to cause a crash.
Successful exploitation requires that a ParaVirtual OPerationS (PVOPS) guest is used.
Provided and/or discovered by:
Reported by the vendor.