The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service (host crash) via unspecified vectors related to domain teardown.
Medium
Date | CVE | Title | CVSS |
---|---|---|---|
2015-12-17 | CVE-2015-8341 | Resource Management Errors vulnerability in XEN | 7.8 |
2015-12-17 | CVE-2015-8340 | Code vulnerability in XEN | 4.7 |
2015-12-17 | CVE-2015-8338 | Security Features vulnerability in XEN 4.6.0 | 7.2 |