Xen Denial of Service Vulnerability (CNVD-2020-23023)

Xen is an open source virtual machine monitor product developed at the University of Cambridge, UK. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in X...

CVE-2018-15468

An issue was discovered in Xen through 4.11.x. The DEBUGCTL MSR contains several debugging features, some of which virtualise cleanly, but some do not. In particular, Branch Trace Store is not virtualised by the processor, and software has to be careful to configure it suitably not to lock up the...

CVE-2018-15468

An issue was discovered in Xen through 4.11.x. The DEBUGCTL MSR contains several debugging features, some of which virtualise cleanly, but some do not. In particular, Branch Trace Store is not virtualised by the processor, and software has to be careful to configure it suitably not to lock up the...

CVE-2018-15468

CVE-2018-15468 affects the Xen hypervisor (up to 4.11.x). The issue arises from incorrect handling of the MSR_DEBUGCTL register: when vPMU is disabled, value checking is skipped, allowing a guest to set MSR_DEBUGCTL in a way that enables Branch Trace Store and can lock up the host, leading to a D...