FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

xen-kernel -- CPU lockup during exception delivery

Affected packages
xen-kernel < 4.5.2

Details

VuXML ID 2cabfbab-8bfb-11e5-bd18-002590263bf5
Discovery 2015-11-10
Entry 2015-11-16

The Xen Project reports:

A malicious HVM guest administrator can cause a denial of service. Specifically, prevent use of a physical CPU for a significant, perhaps indefinite period. If a host watchdog (Xen or dom0) is in use, this can lead to a watchdog timeout and consequently a reboot of the host. If another, innocent, guest, is configured with a watchdog, this issue can lead to a reboot of such a guest.

[source]

References

CVE Name CVE-2015-5307
CVE Name CVE-2015-8104
URL http://xenbits.xen.org/xsa/advisory-156.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.