CVE-2015-8551

MEDIUM

Xen - DoS

Title source: llm

Description

The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to hit BUG conditions and cause a denial of service (NULL pointer dereference and host OS crash) by leveraging a system with access to a passed-through MSI or MSI-X capable physical PCI device and a crafted sequence of XEN_PCI_OP_* operations, aka "Linux pciback missing sanity checks."

References (12)

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00045.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00059.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html

[Mailing List, Third Party Advisory] http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html

[Third Party Advisory] http://www.debian.org/security/2016/dsa-3434

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/79546

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1034480

[Vendor Advisory] http://xenbits.xen.org/xsa/advisory-157.html

[Third Party Advisory] https://security.gentoo.org/glsa/201604-03

Scores

CVSS v3 6.0

EPSS 0.0007

EPSS Percentile 21.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

Classification

CWE

CWE-476

Status draft

Affected Products (14)

linux/linux_kernel < 3.1.10

debian/debian_linux

debian/debian_linux

opensuse/opensuse

suse/linux_enterprise_desktop

suse/linux_enterprise_desktop

suse/linux_enterprise_real_time_extension

suse/linux_enterprise_real_time_extension

suse/linux_enterprise_server

suse/linux_enterprise_server

suse/linux_enterprise_server

suse/linux_enterprise_software_development_kit

suse/linux_enterprise_software_development_kit

suse/linux_enterprise_workstation_extension

Timeline

Published Apr 13, 2016

Tracked Since Feb 18, 2026