Memory Leak Vulnerability in Xen Hypervisor

Memory Leak Vulnerability in Xen Hypervisor

CVE-2015-7969 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

Multiple memory leaks in Xen 4.0 through 4.6.x allow local guest administrators or domains with certain permission to cause a denial of service (memory consumption) via a large number of "teardowns" of domains with the vcpu pointer array allocated using the (1) XEN_DOMCTL_max_vcpus hypercall or the xenoprofile state vcpu pointer array allocated using the (2) XENOPROF_get_buffer or (3) XENOPROF_set_passive hypercall.

Learn more about our Web Application Penetration Testing UK.