FreeBSD : xen-kernel -- XENMEM_exchange error handling issues (bcad3faa-b40c-11e5-9728-002590263bf5)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

The Xen Project reports :

Error handling in the operation may involve handing back pages to the
domain. This operation may fail when in parallel the domain gets torn
down. So far this failure unconditionally resulted in the host being
brought down due to an internal error being assumed. This is
CVE-2015-8339.

Furthermore error handling so far wrongly included the release of a
lock. That lock, however, was either not acquired or already released
on all paths leading to the error handling sequence. This is
CVE-2015-8340.

A malicious guest administrator may be able to deny service by
crashing the host or causing a deadlock.

See also :

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=205841
http://xenbits.xen.org/xsa/advisory-159.html
http://www.nessus.org/u?202f442a

Solution :

Update the affected package.

Risk factor :

Medium / CVSS Base Score : 4.7
(CVSS2#AV:L/AC:M/Au:N/C:N/I:N/A:C)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 87750 ()

Bugtraq ID:

CVE ID: CVE-2015-8339
CVE-2015-8340

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now