DEBIAN-CVE-2013-2211

DEBIAN-CVE-2013-2211 PUBLISHED

The libxenlight (libxl) toolstack library in Xen 4.0.x, 4.1.x, and 4.2.x uses weak permissions for xenstore keys for paravirtualised and emulated serial console devices, which allows local guest administrators to modify the xenstore value via unspecified vectors.

Affected Products

Vendor	Product	Versions
Debian:13	xen	0, 0, 0
Debian:11	xen	0, 0, 0
Debian:14	xen	0, 0, 0
Debian:12	xen	0, 0, 0

Timeline

Aug 28, 2013 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2013-2211 advisory

Open in Interactive Console →