CVE-2012-2625

EPSS 0.31%

xen - several

Published: 10/31/2012Modified: 4/28/2026

Description

The PyGrub boot loader in Xen unstable before changeset 25589:60f09d1ab1fe, 4.2.x, and 4.1.x allows local para-virtualized guest users to cause a denial of service (memory consumption) via a large (1) bzip2 or (2) lzma compressed kernel image.

Affected packages (2)

Debian/xenfrom 0, < 4.1.3-4
Debian/xenfrom 0, < 4.0.1-5.7

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-2625