CVE-2015-8339

EPSS 0.10%

xen - security update

Published: 12/17/2015Modified: 4/28/2026

Also known as:DEBIAN-CVE-2015-8339

Description

The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service (host crash) via unspecified vectors related to domain teardown.

Affected packages (2)

Debian/xenfrom 0, < 4.8.0~rc3-1
Debian/xenfrom 0, < 4.4.1-9+deb8u4

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-8339