cpe:/a:xensource:xen_para_virtualized_frame_buffer CVE-2008-1952 2008-06-23T15:41:00.000-04:00 2017-09-28T21:30:57.850-04:00 2.1 LOCAL LOW NONE NONE NONE PARTIAL http://nvd.nist.gov 2008-06-23T16:45:00.000-04:00 SECTRACK 1020957 BID 30646 SECUNIA 32088 REDHAT RHSA-2008:0892 MLIST [Xen-devel] 20080521 [PATCH] ioemu: Fix PVFB backend to limit frame buffer size MLIST [oss-security] 20080521 New Xen ioemu: PVFB backend issue CONFIRM http://xenbits.xensource.com/xen-unstable.hg?rev/9044705960cb30cec385bdca7305bcf7db096721 XF xen-pvfb-ioemu-dos(43362) The backend for XenSource Xen Para Virtualized Frame Buffer (PVFB) in Xen ioemu does not properly restrict the frame buffer size, which allows attackers to cause a denial of service (crash) by mapping an arbitrary amount of guest memory.