CVE-2012-4411 Information

Description

The graphical console in Xen 4.0 4.1 and 4.2 allows local OS guest administrators to obtain sensitive host resource information via the qemu monitor. NOTE: this might be a duplicate of CVE-2007-0998.

Reference

http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00008.html http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00009.html http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00017.html http://lists.opensuse.org/opensuse-security-announce/2012-11/msg00018.html http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html http://lists.xen.org/archives/html/xen-announce/2012-09/msg00007.html http://lists.xen.org/archives/html/xen-announce/2012-09/msg00008.html http://secunia.com/advisories/50493 http://secunia.com/advisories/51324 http://secunia.com/advisories/51352 http://secunia.com/advisories/51413 http://secunia.com/advisories/55082 http://security.gentoo.org/glsa/glsa-201309-24.xml http://www.debian.org/security/2012/dsa-2543 http://www.openwall.com/lists/oss-security/2012/09/06/2 http://www.openwall.com/lists/oss-security/2012/09/06/7 http://www.openwall.com/lists/oss-security/2012/09/07/5 http://www.securityfocus.com/bid/55442 https://security.gentoo.org/glsa/201604-03