DEBIAN-CVE-2011-3131

Advisory lineage Upstream: 1 Downstream: 1

Upstream

CVE-2011-3131

Downstream

DSA-2582-1

Published: 13 Dec 2012, 11:53

Last modified:28 Apr 2026, 20:07

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

13 Dec 2012, 11:53

Published

Vulnerability first disclosed

28 Apr 2026, 20:07

Last Modified

Vulnerability information updated

Description

Xen 4.1.1 and earlier allows local guest OS kernels with control of a PCI[E] device to cause a denial of service (CPU consumption and host hang) via many crafted DMA requests that are denied by the IOMMU, which triggers a livelock.

Affected Systems

debian•xen
< 4.1.2-1 | < 4.1.2-1 | < 4.1.2-1 | < 4.1.2-1

References (1)

https://security-tracker.debian.org/tracker/CVE-2011-3131