DEBIAN-CVE-2012-3432

DEBIAN-CVE-2012-3432 PUBLISHED CVSS 8.699999809265137 HIGH

The handle_mmio function in arch/x86/hvm/io.c in the MMIO operations emulator for Xen 3.3 and 4.x, when running an HVM guest, does not properly reset certain state information between emulation cycles, which allows local guest OS users to cause a denial of service (guest OS crash) via unspecified operations on MMIO regions.

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Debian:11	xen	0, 0, 0
Debian:13	xen	0, 0, 0
Debian:12	xen	0, 0, 0
Debian:14	xen	0, 0, 0

Timeline

Dec 3, 2012 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2012-3432 advisory

Open in Interactive Console →