{"id":"CVE-2013-4553","details":"The XEN_DOMCTL_getmemlist hypercall in Xen 3.4.x through 4.3.x (possibly 4.3.1) does not always obtain the page_alloc_lock and mm_rwlock in the same order, which allows local guest administrators to cause a denial of service (host deadlock).","modified":"2026-01-27T04:12:18.621980Z","published":"2013-12-24T19:55:07Z","withdrawn":"2026-01-27T04:12:18.621980Z","related":["openSUSE-SU-2024:10196-1"],"references":[{"type":"ADVISORY","url":"http://security.gentoo.org/glsa/glsa-201407-03.xml"},{"type":"ADVISORY","url":"http://www.debian.org/security/2014/dsa-3006"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00010.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00021.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2013-12/msg00059.html"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2013/11/26/8"}],"schema_version":"1.7.3"}