CVE-2022-42321
MEDIUM6.5EPSS 0.03%Published: 11/1/2022Modified: 4/28/2026
Description
Xenstore: Guests can crash xenstored via exhausting the stack Xenstored is using recursion for some Xenstore operations (e.g. for deleting a sub-tree of Xenstore nodes). With sufficiently deep nesting levels this can result in stack exhaustion on xenstored, leading to a crash of xenstored.
Affected packages (2)
- Alpine/xenfrom 0, < 4.15.4-r0
- Debian/xenfrom 0, < 4.14.5+86-g1c354767d5-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H |