Debian Security Bug TrackerDEBIANCVE:CVE-2015-7969CVE-2015-7969
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
25.6%
Multiple memory leaks in Xen 4.0 through 4.6.x allow local guest administrators or domains with certain permission to cause a denial of service (memory consumption) via a large number of “teardowns” of domains with the vcpu pointer array allocated using the (1) XEN_DOMCTL_max_vcpus hypercall or the xenoprofile state vcpu pointer array allocated using the (2) XENOPROF_get_buffer or (3) XENOPROF_set_passive hypercall.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | xen | < 4.6.0-1 | xen_4.6.0-1_all.deb |
| Debian | 11 | all | xen | < 4.6.0-1 | xen_4.6.0-1_all.deb |
| Debian | 10 | all | xen | < 4.6.0-1 | xen_4.6.0-1_all.deb |
| Debian | 999 | all | xen | < 4.6.0-1 | xen_4.6.0-1_all.deb |
| Debian | 13 | all | xen | < 4.6.0-1 | xen_4.6.0-1_all.deb |
Related
4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
25.6%