CVE-2015-2752

MEDIUM
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The XEN_DOMCTL_memory_mapping hypercall in Xen 3.2.x through 4.5.x, when using a PCI passthrough device, is not preemptible, which allows local x86 HVM domain users to cause a denial of service (host CPU consumption) via a crafted request to the device model (qemu-dm).

References

http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154574.html

http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154579.html

http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155198.html

http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00014.html

http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00018.html

http://www.securityfocus.com/bid/73448

http://www.securitytracker.com/id/1031994

http://xenbits.xen.org/xsa/advisory-125.html

https://security.gentoo.org/glsa/201504-04

Details

Source: MITRE

Published: 2015-04-01

Updated: 2018-10-30

Type: CWE-20

Risk Information

CVSS v2

Base Score: 4.9

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 3.9

Severity: MEDIUM

Tenable Plugins

View all (16 total)

IDNameProductFamilySeverity
140019OracleVM 3.4 : xen (OVMSA-2020-0039) (Bunker Buster) (Foreshadow) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout) (Meltdown) (POODLE) (Spectre)NessusOracleVM Local Security Checks
critical
111992OracleVM 3.4 : xen (OVMSA-2018-0248) (Bunker Buster) (Foreshadow) (Meltdown) (POODLE) (Spectre)NessusOracleVM Local Security Checks
critical
91198Debian DLA-479-1 : xen security updateNessusDebian Local Security Checks
high
88737OracleVM 2.2 : xen (OVMSA-2016-0012)NessusOracleVM Local Security Checks
high
84715FreeBSD : xen-kernel and xen-tools -- Long latency MMIO mapping operations are not preemptible (d40c66cb-27e4-11e5-a4a5-002590263bf5)NessusFreeBSD Local Security Checks
medium
84333openSUSE Security Update : xen (openSUSE-2015-434) (Venom)NessusSuSE Local Security Checks
high
84140OracleVM 3.2 : xen (OVMSA-2015-0068) (POODLE) (Venom)NessusOracleVM Local Security Checks
low
83757SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2015:0923-1) (Venom)NessusSuSE Local Security Checks
high
83714SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2015:0701-1)NessusSuSE Local Security Checks
high
83483OracleVM 3.2 : xen (OVMSA-2015-0058) (Venom)NessusOracleVM Local Security Checks
high
83482OracleVM 3.3 : xen (OVMSA-2015-0057) (Venom)NessusOracleVM Local Security Checks
high
82952Fedora 22 : xen-4.5.0-7.fc22 (2015-5295)NessusFedora Local Security Checks
high
82907openSUSE Security Update : xen (openSUSE-2015-314)NessusSuSE Local Security Checks
high
82734GLSA-201504-04 : Xen: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
82730Fedora 20 : xen-4.3.4-2.fc20 (2015-5402)NessusFedora Local Security Checks
high
82729Fedora 21 : xen-4.4.2-2.fc21 (2015-5208)NessusFedora Local Security Checks
high