CVE-2015-6654 — XEN vulnerability

CWE-2646 documents6 sources

Severity

2.1LOWNVD

EPSS

0.0%

top 85.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN

Timeline

PublishedSep 3

Latest updateMay 17

Description

The xenmem_add_to_physmap_one function in arch/arm/mm.c in Xen 4.5.x, 4.4.x, and earlier does not limit the number of printk console messages when reporting a failure to retrieve a reference on a foreign page, which allows remote domains to cause a denial of service by leveraging permissions to map the memory of a foreign guest.

CVSS vector

AV:L/AC:L/C:N/I:N/A:PExploitability: 3.9 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/xen< xen 4.8.0~rc3-1 (bookworm)

▶Debianxen/xen< 4.8.0~rc3-1+3

▶NVDxen/xen4.4.0, 4.5.0, 4.5.1+2

Patches

Patch: xenbits.xen.org ↗Patch: xenbits.xen.org ↗

🔴Vulnerability Details

GHSA

GHSA-5993-2g85-9fjv: The xenmem_add_to_physmap_one function in arch/arm/mm↗2022-05-17

▶

OSV

CVE-2015-6654: The xenmem_add_to_physmap_one function in arch/arm/mm↗2015-09-03

▶

📋Vendor Advisories

Red Hat

xen: printk is not rate-limited in xenmem_add_to_physmap_one↗2015-09-01

▶

Debian

CVE-2015-6654: xen - The xenmem_add_to_physmap_one function in arch/arm/mm.c in Xen 4.5.x, 4.4.x, and...↗2015

▶

💬Community

Bugzilla

CVE-2015-6654 xen: printk is not rate-limited in xenmem_add_to_physmap_one↗2015-08-24

▶