Candidate: CVE-2015-8341
PublicDate: 2015-12-17 19:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8341
 http://xenbits.xen.org/xsa/advisory-160.html
Description:
 The libxl toolstack library in Xen 4.1.x through 4.6.x does not properly
 release mappings of files used as kernels and initial ramdisks when
 managing multiple domains in the same process, which allows attackers to
 cause a denial of service (memory and disk consumption) by starting
 domains.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: George Dunlap
Assigned-to:
CVSS: 

Patches_xen:
 upstream: http://xenbits.xen.org/xsa/xsa160.patch
 upstream: http://xenbits.xen.org/xsa/xsa160-4.4.patch
 upstream: http://xenbits.xen.org/xsa/xsa160-4.6.patch
upstream_xen: needed
precise_xen: not-affected
trusty_xen: released (4.4.2-0ubuntu0.14.04.4)
trusty/esm_xen: DNE (trusty was released [4.4.2-0ubuntu0.14.04.4])
vivid_xen: released (4.5.0-1ubuntu4.4)
wily_xen: released (4.5.1-0ubuntu1.2)
devel_xen: released (4.6.0-1ubuntu2)