CVE-2015-8104
published 2015-11-16CVE-2015-8104: The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service (host OS panic or hang) by…
critical10CVSS 3.1
AVNACLPRNUINSCCHIHAH
The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service (host OS panic or hang) by triggering many #DB (aka Debug) exceptions, related to svm.c.
Affected
57 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | linux | < linux 4.2.6-2 (bookworm) | linux 4.2.6-2 (bookworm) |
| debian | virtualbox | < linux 4.2.6-2 (bookworm) | linux 4.2.6-2 (bookworm) |
| debian | xen | < linux 4.2.6-2 (bookworm) | linux 4.2.6-2 (bookworm) |
| debian | xen | < xen 4.17.2+76-ge1f9cb16e2-1~deb12u1 (bookworm) | xen 4.17.2+76-ge1f9cb16e2-1~deb12u1 (bookworm) |
| linux | linux_kernel | <= 4.2.3 | — |
| linux | linux_kernel | >= 0 < 4.2.6-2 | 4.2.6-2 |
| linux | linux_kernel | >= 0 < 4.2.6-2 | 4.2.6-2 |
| linux | linux_kernel | >= 0 < 4.2.6-2 | 4.2.6-2 |
| linux | linux_kernel | >= 0 < 4.2.6-2 | 4.2.6-2 |
| linux | linux_kernel | >= 0 < 3.13.0-73.116 | 3.13.0-73.116 |
| oracle | solaris | — | — |
| oracle | vm_virtualbox | 4.0.0 – 4.0.34 | — |
| oracle | vm_virtualbox | 4.1.0 – 4.1.42 | — |
| oracle | vm_virtualbox | 4.2.0 – 4.2.34 | — |
| oracle | vm_virtualbox | 4.3.0 – 4.3.35 | — |
| oracle | vm_virtualbox | 5.0.0 – 5.0.13 | — |
| xen | xen | — | — |
| xen | xen | — | — |
| xen | xen | — | — |
CVSS provenance
nvdv3.110.0CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
osv10.0CRITICAL