Xen up to and including 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service (hypervisor crash), aka XSA-225.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xen xen 4.6.0 |
||
xen xen 4.8.1 |
||
xen xen 4.7.1 |
||
xen xen 4.8.0 |
||
xen xen 4.6.4 |
||
xen xen 4.6.5 |
||
xen xen 4.6.1 |
||
xen xen 4.6.2 |