CVE-2015-7969
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2015-7969
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2015-7969.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2015-7969
- Related
- Published
- 2015-10-30T15:59:05Z
- Modified
- 2024-09-18T01:00:22Z
- Summary
- [none]
- Details
-
Multiple memory leaks in Xen 4.0 through 4.6.x allow local guest administrators or domains with certain permission to cause a denial of service (memory consumption) via a large number of "teardowns" of domains with the vcpu pointer array allocated using the (1) XENDOMCTLmaxvcpus hypercall or the xenoprofile state vcpu pointer array allocated using the (2) XENOPROFgetbuffer or (3) XENOPROFset_passive hypercall.
- References
-
- http://www.debian.org/security/2015/dsa-3414
- http://xenbits.xen.org/xsa/advisory-149.html
- http://xenbits.xen.org/xsa/advisory-151.html
- https://security.gentoo.org/glsa/201604-03
- http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171082.html
- http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171185.html
- http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171249.html
- http://lists.opensuse.org/opensuse-updates/2015-11/msg00063.html
- http://support.citrix.com/article/CTX202404
- http://www.securityfocus.com/bid/77364
- http://www.securitytracker.com/id/1034033
- https://security-tracker.debian.org/tracker/CVE-2015-7969
Affected packages
Debian:11 / xen
Package
- Name
- xen
- Purl
- pkg:deb/debian/xen?arch=source
Debian:12 / xen
Package
- Name
- xen
- Purl
- pkg:deb/debian/xen?arch=source
Debian:13 / xen
Package
- Name
- xen
- Purl
- pkg:deb/debian/xen?arch=source