Main Vulnerability Database SB2015102902

SB2015102902 - Resource management error in xen (Alpine package)

Published: October 29, 2015

Security Bulletin ID SB2015102902

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Resource management error (CVE-ID: CVE-2015-7970)

The vulnerability allows a local non-authenticated attacker to perform a denial of service (DoS) attack.

The p2m_pod_emergency_sweep function in arch/x86/mm/p2m-pod.c in Xen 3.4.x, 3.5.x, and 3.6.x is not preemptible, which allows local x86 HVM guest administrators to cause a denial of service (CPU consumption and possibly reboot) via crafted memory contents that triggers a "time-consuming linear scan," related to Populate-on-Demand.

Remediation

Install update from vendor's website.

References

https://git.alpinelinux.org/aports/commit/?id=8de87f6fcb13498bc4cc667709aa9e481f087f7a
https://git.alpinelinux.org/aports/commit/?id=2f061361d268cbd832114c8d8f793f71decd08c7
https://git.alpinelinux.org/aports/commit/?id=1e0864dfc2222c7a623cf8eefa098700e17f304a