CVE-2015-7971
low
CVSS v3
—
CVSS v2
2.1
VIR risk
2.1
Description
Xen 3.2.x through 4.6.x does not limit the number of printk console messages when logging certain pmu and profiling hypercalls, which allows local guests to cause a denial of service via a sequence of crafted (1) HYPERCALL_xenoprof_op hypercalls, which are not properly handled in the do_xenoprof_op function in common/xenoprof.c, or (2) HYPERVISOR_xenpmu_op hypercalls, which are not properly handled in the do_xenpmu_op function in arch/x86/cpu/vpmu.c.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2015-7971
Vendor advisory: cve@mitre.org — http://xenbits.xen.org/xsa/advisory-152.html
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| debian | bookworm | fixed | 4.6.0-1 |
| debian | bullseye | fixed | 4.6.0-1 |
| debian | forky | fixed | 4.6.0-1 |
| debian | sid | fixed | 4.6.0-1 |
| debian | trixie | fixed | 4.6.0-1 |
References
- http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171082.html
- http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171185.html
- http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171249.html
- http://lists.opensuse.org/opensuse-updates/2015-11/msg00063.html
- http://support.citrix.com/article/CTX202404
- http://www.debian.org/security/2015/dsa-3414
- http://www.securityfocus.com/bid/77363
- http://www.securitytracker.com/id/1034035
- http://xenbits.xen.org/xsa/advisory-152.html
- https://security.gentoo.org/glsa/201604-03
- https://security-tracker.debian.org/tracker/CVE-2015-7971
CWEs
CWE-19
Verify integrity in audit chain (admin only). AS-IS.