CVE-2016-5242

MEDIUM

Xen - Denial of Service

Title source: rule

Description

The p2m_teardown function in arch/arm/p2m.c in Xen 4.4.x through 4.6.x allows local guest OS users with access to the driver domain to cause a denial of service (NULL pointer dereference and host OS crash) by creating concurrent domains and holding references to them, related to VMID exhaustion.

References (4)

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1036035

[Vendor Advisory] http://xenbits.xen.org/xsa/advisory-181.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/91015

[Third Party Advisory] http://www.debian.org/security/2016/dsa-3633

Scores

CVSS v3 5.6

EPSS 0.0014

EPSS Percentile 33.4%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

Classification

Status draft

Affected Products (12)

xen/xen

Timeline

Published Jun 07, 2016

Tracked Since Feb 18, 2026