CVE-2015-6654
Published: 3 September 2015
The xenmem_add_to_physmap_one function in arch/arm/mm.c in Xen 4.5.x, 4.4.x, and earlier does not limit the number of printk console messages when reporting a failure to retrieve a reference on a foreign page, which allows remote domains to cause a denial of service by leveraging permissions to map the memory of a foreign guest.
Notes
| Author | Note |
|---|---|
| mdeslaur | hypervisor packages are in universe. For issues in the hypervisor, add appropriate tags to each section, ex: Tags_xen: universe-binary |
| seth-arnold | Mitigation: "Reducing the hypervisor log level can be used to suppress messages" |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
xen Launchpad, Ubuntu, Debian |
precise |
Released
(4.1.6.1-0ubuntu0.12.04.6)
|
| trusty |
Released
(4.4.2-0ubuntu0.14.04.2)
|
|
| upstream |
Needed
|
|
| vivid |
Released
(4.5.0-1ubuntu4.2)
|
|
| wily |
Not vulnerable
(4.5.1-0ubuntu1)
|
|
|
Patches: upstream: http://xenbits.xen.org/xsa/xsa141.patch |
||
| Binaries built from this source package are in Universe and so are supported by the community. | ||