NVD

Id
28338  
Name
CVE-2015-7969  
Description
Multiple memory leaks in Xen 4.0 through 4.6.x allow local guest administrators or domains with certain permission to cause a denial of service (memory consumption) via a large number of "teardowns" of domains with the vcpu pointer array allocated using the (1) XEN_DOMCTL_max_vcpus hypercall or the xenoprofile state vcpu pointer array allocated using the (2) XENOPROF_get_buffer or (3) XENOPROF_set_passive hypercall.  
Reject
 
CVSS Version
2  
CVSS Score
4.9  
Severity
Medium  
CVSS Base Score
4.9  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:N/I:N/A:C)  
Pub Date
2017-01-19  
Published
2015-10-30  
Modified Date
2016-12-07  
Seq
2015-7969  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
148911 28338 CVE-2015-7969 FEDORA-2015-a931b02be2  View
148912 28338 CVE-2015-7969 FEDORA-2015-6f6b79efe2  View
148913 28338 CVE-2015-7969 FEDORA-2015-242be2c240  View
148914 28338 CVE-2015-7969 openSUSE-SU-2015:1965  View
148915 28338 CVE-2015-7969 http://support.citrix.com/article/CTX202404  View
148916 28338 CVE-2015-7969 DSA-3414  View
148917 28338 CVE-2015-7969 77364  View
148918 28338 CVE-2015-7969 1034033  View
148919 28338 CVE-2015-7969 http://xenbits.xen.org/xsa/advisory-149.html  View
148920 28338 CVE-2015-7969 http://xenbits.xen.org/xsa/advisory-151.html  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
10380 JVNDB-2015-005700 Xen におけるサービス運用妨害 (DoS) の脆弱性 Xen には、メモリリークにより、サービス運用妨害 (メモリ消費) 状態にされる脆弱性が存在します。 CVE-2015-7969 85194 CVE-2015-7969 28338 4.9 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-005700.html 2015-10-29 2015-11-04 View