CVE-2015-8552

MEDIUM

Xen - Denial of Service via PCI Backend Driver Missing Sanity Checks

Title source: llm
STIX 2.1

Description

The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to generate a continuous stream of WARN messages and cause a denial of service (disk consumption) by leveraging a system with access to a passed-through MSI or MSI-X capable physical PCI device and XEN_PCI_OP_enable_msi operations, aka "Linux pciback missing sanity checks."

References (12)

Core 12
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1034480
Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html
Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00059.html
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201604-03
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2016/dsa-3434
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/79546
Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html
Vendor Advisory x_refsource_confirm
http://xenbits.xen.org/xsa/advisory-157.html

Scores

CVSS v3 4.4
EPSS 0.0019
EPSS Percentile 40.5%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-20
Status published
Products (43)
canonical/ubuntu_linux 12.04
debian/debian_linux 6.0
novell/suse_linux_enterprise_debuginfo 11 sp4
novell/suse_linux_enterprise_real_time_extension 11 sp4
novell/suse_linux_enterprise_real_time_extension 12 sp1
xen/xen 3.1.3
xen/xen 3.1.4
xen/xen 3.2.0
xen/xen 3.2.1
xen/xen 3.2.2
... and 33 more
Published Apr 13, 2016
Tracked Since Feb 18, 2026