CVE-2015-7970

Loading...

General

Score:4.9/10.0
Severity:Low
Category:Resource Management Error

Impact Metrics

Confidentiality:None
Integrity:None
Availability:Complete

Exploitability Metrics

Access Vector:Local
Access Complexity:Low
Authentication:None

Relative vulnerabilities

CVE-2015-2752, CVE-2015-2756, CVE-2015-3259, CVE-2015-3340, CVE-2015-5165, CVE-2015-5307, CVE-2015-6654, CVE-2015-7311, CVE-2015-7504, CVE-2015-7812, CVE-2015-7813, CVE-2015-7814, CVE-2015-7835, CVE-2015-7969, CVE-2015-7971, CVE-2015-7972, CVE-2015-8104, CVE-2015-8339, CVE-2015-8340, CVE-2015-8341, CVE-2015-8345, CVE-2015-8550, CVE-2015-8554, CVE-2015-8555, CVE-2015-8615, CVE-2016-1570, CVE-2016-1571, CVE-2016-2270, CVE-2016-2271

Published on 30/10/15 - Updated on 01/07/17

Description

The p2m_pod_emergency_sweep function in arch/x86/mm/p2m-pod.c in Xen 3.4.x, 3.5.x, and 3.6.x is not preemptible, which allows local x86 HVM guest administrators to cause a denial of service (CPU consumption and possibly reboot) via crafted memory contents that triggers a "time-consuming linear scan," related to Populate-on-Demand.

Category: Resource Management Error

CWE-399 (Resource Management Errors)
Weaknesses in this category are related to improper management of system resources.

Security Notices

US National Vulnerability DatabaseCVE-2015-7970
Agence Nationale de la Sécurité des Systèmes d'Information CERTFR-2015-AVI-458
Debian DSA-3414-1
Debian LTSDLA-479-1
SUSE SUSE-SU-2015:2306, SUSE-SU-2015:2326, SUSE-SU-2015:2328, SUSE-SU-2015:2338

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
xenxen

Share this vulnerability with:

Twitter Facebook LinkedIn Mail