CVE-2015-4103
EPSS 0.12%Published: 6/3/2015Modified: 4/28/2026
Also known as:DEBIAN-CVE-2015-4103
Description
Xen 3.3.x through 4.5.x does not properly restrict write access to the host MSI message data field, which allows local x86 HVM guest administrators to cause a denial of service (host interrupt handling confusion) via vectors related to qemu and accessing spanning multiple fields.
Affected packages (2)
- Debian/qemufrom 0, < 1:2.3+dfsg-5
- Debian/xenfrom 0, < 4.4.0-1