FreeBSD : xen-kernel -- XENMEM_exchange error handling issues (bcad3faa-b40c-11e5-9728-002590263bf5)

This script is Copyright (C) 2016 Tenable Network Security, Inc.

Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

The Xen Project reports :

Error handling in the operation may involve handing back pages to the
domain. This operation may fail when in parallel the domain gets torn
down. So far this failure unconditionally resulted in the host being
brought down due to an internal error being assumed. This is

Furthermore error handling so far wrongly included the release of a
lock. That lock, however, was either not acquired or already released
on all paths leading to the error handling sequence. This is

A malicious guest administrator may be able to deny service by
crashing the host or causing a deadlock.

See also :

Solution :

Update the affected package.

Risk factor :

Medium / CVSS Base Score : 4.7

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 87750 ()

Bugtraq ID:

CVE ID: CVE-2015-8339

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now