CVE-2016-5242 — XEN vulnerability

6 documents6 sources

Severity

5.6MEDIUMNVD

EPSS

0.1%

top 66.50%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

XEN Debian XEN

Timeline

PublishedJun 7

Latest updateMay 17

Description

The p2m_teardown function in arch/arm/p2m.c in Xen 4.4.x through 4.6.x allows local guest OS users with access to the driver domain to cause a denial of service (NULL pointer dereference and host OS crash) by creating concurrent domains and holding references to them, related to VMID exhaustion.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 1.1 | Impact: 4.0

Affected Packages3 packages

▶debiandebian/xen< xen 4.8.0~rc3-1 (bookworm)

▶Debianxen/xen< 4.8.0~rc3-1+3

▶NVDxen/xen11 versions+10

🔴Vulnerability Details

GHSA

GHSA-2vf7-h2xh-7v4v: The p2m_teardown function in arch/arm/p2m↗2022-05-17

▶

OSV

CVE-2016-5242: The p2m_teardown function in arch/arm/p2m↗2016-06-07

▶

📋Vendor Advisories

Red Hat

xen: arm: Host crash caused by VMID exhaustion (XSA-181)↗2016-06-03

▶

Debian

CVE-2016-5242: xen - The p2m_teardown function in arch/arm/p2m.c in Xen 4.4.x through 4.6.x allows lo...↗2016

▶

💬Community

Bugzilla

CVE-2016-5242 xsa181 xen: arm: Host crash caused by VMID exhaustion (XSA-181)↗2016-06-03

▶