Unrated severityNVD Advisory· Published Dec 3, 2012· Updated Jun 16, 2026
CVE-2012-3432
CVE-2012-3432
Description
The handle_mmio function in arch/x86/hvm/io.c in the MMIO operations emulator for Xen 3.3 and 4.x, when running an HVM guest, does not properly reset certain state information between emulation cycles, which allows local guest OS users to cause a denial of service (guest OS crash) via unspecified operations on MMIO regions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
13cpe:2.3:o:xen:xen:3.3.0:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:o:xen:xen:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:4.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:4.0.2:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:4.0.3:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:4.0.4:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:4.1.2:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:4.1.3:*:*:*:*:*:*:*
- cpe:2.3:o:xen:xen:4.2.0:*:*:*:*:*:*:*
- (no CPE)range: 3.3, 4.x
Patches
Vulnerability mechanics
References
9- lists.xen.org/archives/html/xen-devel/2012-07/msg01649.htmlnvdExploitVendor Advisory
- lists.opensuse.org/opensuse-security-announce/2012-08/msg00024.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2012-08/msg00025.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2012-09/msg00017.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2012-09/msg00018.htmlnvd
- secunia.com/advisories/55082nvd
- security.gentoo.org/glsa/glsa-201309-24.xmlnvd
- www.debian.org/security/2012/dsa-2531nvd
- www.securityfocus.com/bid/54691nvd
News mentions
0No linked articles in our index yet.