QwikSec

Security Database

CVE

CWE

Training

CVE-2015-8555

Published: Apr 13, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_BID

http://xenbits.xen.org/xsa/advisory-165.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_GENTOO

http://support.citrix.com/article/CTX203879

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.