4.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:N/I:N/A:C
0.001 Low
EPSS
Percentile
25.6%
Multiple memory leaks in Xen 4.0 through 4.6.x allow local guest
administrators or domains with certain permission to cause a denial of
service (memory consumption) via a large number of “teardowns” of domains
with the vcpu pointer array allocated using the (1) XEN_DOMCTL_max_vcpus
hypercall or the xenoprofile state vcpu pointer array allocated using the
(2) XENOPROF_get_buffer or (3) XENOPROF_set_passive hypercall.