Vulnerabilities > XEN > XEN > 4.3.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2013-11-02 | CVE-2013-4416 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in XEN The Ocaml xenstored implementation (oxenstored) in Xen 4.1.x, 4.2.x, and 4.3.x allows local guest domains to cause a denial of service (domain shutdown) via a large message reply. | 5.2 |
| 2013-11-02 | CVE-2013-4494 | Improper Input Validation vulnerability in multiple products Xen before 4.1.x, 4.2.x, and 4.3.x does not take the page_alloc_lock and grant_table.lock in the same order, which allows local guest administrators with access to multiple vcpus to cause a denial of service (host deadlock) via unspecified vectors. | 5.2 |