VYPR
Unrated severityNVD Advisory· Published Aug 12, 2011· Updated Jun 16, 2026

CVE-2011-1583

CVE-2011-1583

Description

Multiple integer overflows in tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allow local users to cause a denial of service and possibly execute arbitrary code via a crafted paravirtualised guest kernel image that triggers (1) a buffer overflow during a decompression loop or (2) an out-of-bounds read in the loader involving unspecified length fields.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:citrix:xen:3.2.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:citrix:xen:3.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:citrix:xen:3.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:citrix:xen:4.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:citrix:xen:4.1.0:*:*:*:*:*:*:*
  • Xen/Xenllm-fuzzy
    Range: 3.2, 3.3, 4.0, 4.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.