Lucene search

K

MitreCVELIST:CVE-2015-7969

HistoryOct 30, 2015 - 3:00 p.m.

CVE-2015-7969

2015-10-3015:00:00

mitre

www.cve.org

19

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

26.7%

Multiple memory leaks in Xen 4.0 through 4.6.x allow local guest administrators or domains with certain permission to cause a denial of service (memory consumption) via a large number of “teardowns” of domains with the vcpu pointer array allocated using the (1) XEN_DOMCTL_max_vcpus hypercall or the xenoprofile state vcpu pointer array allocated using the (2) XENOPROF_get_buffer or (3) XENOPROF_set_passive hypercall.

References

lists.fedoraproject.org/pipermail/package-announce/2015-November/171082.html

lists.fedoraproject.org/pipermail/package-announce/2015-November/171185.html

lists.fedoraproject.org/pipermail/package-announce/2015-November/171249.html

lists.opensuse.org/opensuse-updates/2015-11/msg00063.html

support.citrix.com/article/CTX202404

www.debian.org/security/2015/dsa-3414

www.securityfocus.com/bid/77364

www.securitytracker.com/id/1034033

xenbits.xen.org/xsa/advisory-149.html

xenbits.xen.org/xsa/advisory-151.html

security.gentoo.org/glsa/201604-03

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

26.7%

Related for CVELIST:CVE-2015-7969

prion1 nvd1 freebsd2 ubuntucve1 xen2 nessus25 cve1 debiancve1 openvas19 suse6 fedora3 debian2 osv2 mageia1 gentoo1