CVE-2012-5511
EPSS 0.09%
Description
Stack-based buffer overflow in the dirty video RAM tracking functionality in Xen 3.4 through 4.1 allows local HVM guest OS administrators to cause a denial of service (crash) via a large bitmap image.
How to fix CVE-2012-5511
To remediate CVE-2012-5511, upgrade the affected package to a fixed version below.
- Debian/xen—upgrade to 4.1.3-5 or later
Is CVE-2012-5511 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 4.1.3-5