Vulnerability Details CVE-2016-5242
The p2m_teardown function in arch/arm/p2m.c in Xen 4.4.x through 4.6.x allows local guest OS users with access to the driver domain to cause a denial of service (NULL pointer dereference and host OS crash) by creating concurrent domains and holding references to them, related to VMID exhaustion.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.4%
CVSS Severity
CVSS v3 Score 5.6
CVSS v2 Score 4.7
References
- http://www.debian.org/security/2016/dsa-3633
- http://www.securityfocus.com/bid/91015
- http://www.securitytracker.com/id/1036035
- http://xenbits.xen.org/xsa/advisory-181.html
- http://www.debian.org/security/2016/dsa-3633
- http://www.securityfocus.com/bid/91015
- http://www.securitytracker.com/id/1036035
- http://xenbits.xen.org/xsa/advisory-181.html
Products affected by CVE-2016-5242
-
cpe:2.3:o:xen:xen:4.4.0
-
cpe:2.3:o:xen:xen:4.4.1
-
cpe:2.3:o:xen:xen:4.4.2
-
cpe:2.3:o:xen:xen:4.4.3
-
cpe:2.3:o:xen:xen:4.4.4
-
cpe:2.3:o:xen:xen:4.5.0
-
cpe:2.3:o:xen:xen:4.5.1
-
cpe:2.3:o:xen:xen:4.5.2
-
cpe:2.3:o:xen:xen:4.5.3
-
cpe:2.3:o:xen:xen:4.6.0
-
cpe:2.3:o:xen:xen:4.6.1