Xen Denial of Service Vulnerability (CNVD-2015-03571)

Xen is an open source virtual machine monitor. Xen versions 3.3.x-4.5.x, enable logging of PCI MSI-X passthrough error messages, which can be exploited by local x86 clients to cause a denial of service host disk exhaustion through certain invalid actions...

Xen DoS using IOMMU faults from PCI-passthrough guest

ISSUE DESCRIPTION A VM that controls a PCIE device directly can cause it to issue DMA requests to invalid addresses. Although these requests are denied by the IOMMU, the hypervisor needs to handle the interrupt and clear the error from the IOMMU, and this can be used to live-lock a CPU and...