Back to search
CVE-2015-2752
Published: Apr 1, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
The XEN_DOMCTL_memory_mapping hypercall in Xen 3.2.x through 4.5.x, when using a PCI passthrough device, is not preemptible, which allows local x86 HVM domain users to cause a denial of service (host CPU consumption) via a crafted request to the device model (qemu-dm).
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1031994
vdb-entry
x_refsource_SECTRACK
GLSA-201504-04
vendor-advisory
x_refsource_GENTOO
FEDORA-2015-5295
vendor-advisory
x_refsource_FEDORA
SUSE-SU-2015:0923
vendor-advisory
x_refsource_SUSE
73448
vdb-entry
x_refsource_BID
FEDORA-2015-5208
vendor-advisory
x_refsource_FEDORA
http://xenbits.xen.org/xsa/advisory-125.html
x_refsource_CONFIRM
openSUSE-SU-2015:0732
vendor-advisory
x_refsource_SUSE
FEDORA-2015-5402
vendor-advisory
x_refsource_FEDORA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now