CVE-2015-8552LOW
Description
The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to generate a continuous stream of WARN messages and cause a denial of service (disk consumption) by leveraging a system with access to a passed-through MSI or MSI-X capable physical PCI device and XEN_PCI_OP_enable_msi operations, aka "Linux pciback missing sanity checks."
References
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00094.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00045.html
http://lists.opensuse.org/opensuse-security-announce/2016-06/msg00059.html
http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00000.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00044.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00055.html
http://www.debian.org/security/2016/dsa-3434
http://www.securityfocus.com/bid/79546
http://www.securitytracker.com/id/1034480
Details
Source: MITRE
Published: 2016-04-13
Updated: 2017-11-04
Type: CWE-20
Risk Information
CVSS v2.0
Base Score: 1.7
Vector: AV:L/AC:L/Au:S/C:N/I:N/A:P
Impact Score: 2.9
Exploitability Score: 3.1
Severity: LOW
CVSS v3.0
Base Score: 4.4
Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Impact Score: 3.6
Exploitability Score: 0.8
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
cpe:2.3:o:xen:xen:3.1.3:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.1.4:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.2.0:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.2.1:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.2.2:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.2.3:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.3.0:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.3.1:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.3.2:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.4.0:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.4.1:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.4.2:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.4.3:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:3.4.4:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.0.1:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.0.2:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.0.3:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.0.4:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.1.1:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.1.2:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.1.3:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.1.4:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.1.5:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.1.6:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.1.6.1:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.2.0:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.2.1:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.2.2:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.2.3:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.2.4:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.2.5:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.3.0:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.3.1:*:*:*:*:*:*:*
cpe:2.3:o:xen:xen:4.3.2:*:*:*:*:*:*:*
Configuration 2
OR
Configuration 3
OR
cpe:2.3:o:novell:suse_linux_enterprise_debuginfo:11:sp4:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_real_time_extension:11:sp4:*:*:*:*:*:*
cpe:2.3:o:novell:suse_linux_enterprise_real_time_extension:12:sp1:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 93299 | SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:2105-1) | Nessus | SuSE Local Security Checks | high |
| 93216 | openSUSE Security Update : the Linux Kernel (openSUSE-2016-1029) | Nessus | SuSE Local Security Checks | high |
| 90884 | SUSE SLES11 Security Update : kernel (SUSE-SU-2016:1203-1) | Nessus | SuSE Local Security Checks | critical |
| 90783 | openSUSE Security Update : the Linux Kernel (openSUSE-2016-518) | Nessus | SuSE Local Security Checks | critical |
| 90380 | GLSA-201604-03 : Xen: Multiple vulnerabilities (Venom) | Nessus | Gentoo Local Security Checks | high |
| 90264 | SUSE SLED11 / SLES11 Security Update : kernel (SUSE-SU-2016:0911-1) | Nessus | SuSE Local Security Checks | critical |
| 88605 | openSUSE Security Update : the Linux Kernel (openSUSE-2016-136) | Nessus | SuSE Local Security Checks | high |
| 88545 | openSUSE Security Update : the Linux Kernel (openSUSE-2016-124) | Nessus | SuSE Local Security Checks | critical |
| 88542 | openSUSE Security Update : the Linux Kernel (openSUSE-2016-116) | Nessus | SuSE Local Security Checks | high |
| 88006 | SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2016:0168-1) | Nessus | SuSE Local Security Checks | high |
| 87741 | Debian DSA-3434-1 : linux - security update | Nessus | Debian Local Security Checks | medium |
| 87537 | Ubuntu 14.04 LTS : linux-lts-vivid vulnerabilities (USN-2854-1) | Nessus | Ubuntu Local Security Checks | medium |
| 87536 | Ubuntu 14.04 LTS : linux-lts-wily vulnerabilities (USN-2853-1) | Nessus | Ubuntu Local Security Checks | medium |
| 87534 | Ubuntu 15.10 : linux vulnerabilities (USN-2851-1) | Nessus | Ubuntu Local Security Checks | medium |
| 87533 | Ubuntu 15.04 : linux vulnerabilities (USN-2850-1) | Nessus | Ubuntu Local Security Checks | medium |
| 87532 | Ubuntu 14.04 LTS : linux-lts-utopic vulnerabilities (USN-2849-1) | Nessus | Ubuntu Local Security Checks | medium |
| 87531 | Ubuntu 14.04 LTS : linux vulnerabilities (USN-2848-1) | Nessus | Ubuntu Local Security Checks | medium |
| 87530 | Ubuntu 12.04 LTS : linux-lts-trusty vulnerabilities (USN-2847-1) | Nessus | Ubuntu Local Security Checks | medium |
| 87529 | Ubuntu 12.04 LTS : linux vulnerabilities (USN-2846-1) | Nessus | Ubuntu Local Security Checks | medium |