CVE-2016-4963
MEDIUM4.7EPSS 0.05%xen - security update
Published: 6/7/2016Modified: 3/9/2026
Also known as:DEBIAN-CVE-2016-4963DLA-1493-1
Description
The libxl device-handling in Xen through 4.6.x allows local guest OS users with access to the driver domain to cause a denial of service (management tool confusion) by manipulating information in the backend directories in xenstore.
Affected packages (2)
- Debian/xenfrom 0, < 4.8.0~rc3-1
- Debian/xenfrom 0, < 4.4.4lts1-0+deb8u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.7 | CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H |