Launchpad.net

CVE 2015-8615

The hvm_set_callback_via function in arch/x86/hvm/irq.c in Xen 4.6 does not limit the number of printk console messages when logging the new callback method, which allows local HVM guest OS users to cause a denial of service via a large number of changes to the callback method (HVM_PARAM_CALLBACK_IRQ).

Related bugs and status

CVE-2015-8615 (Candidate) is related to these bugs:

Bug #1564909: CVE-2016-2270 / XSA-154

Summary				In	Importance	Status
	1564909	CVE-2016-2270 / XSA-154		xen (Ubuntu)	Undecided	Fix Released

Bug #1564914: CVE-2016-1570 / XSA-167

Summary				In	Importance	Status
	1564914	CVE-2016-1570 / XSA-167		xen (Ubuntu)	Undecided	Fix Released

Bug #1564915: CVE-2016-1571 / XSA-168

Summary				In	Importance	Status
	1564915	CVE-2016-1571 / XSA-168		xen (Ubuntu)	Undecided	Fix Released

Bug #1564916: CVE-2016-2271 / XSA-170

Summary				In	Importance	Status
	1564916	CVE-2016-2271 / XSA-170		xen (Ubuntu)	Undecided	Fix Released

Bug #1671760: Xen HVM guests running linux 4.10 fail to boot on Intel hosts

		In	Importance	Status
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	xen (Ubuntu)	High	Fix Released
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	xen (Ubuntu Zesty)	High	Fix Released
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	xen (Ubuntu Trusty)	High	Fix Released
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	xen (Ubuntu Yakkety)	High	Fix Released
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	xen (Ubuntu Xenial)	High	Fix Released
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	linux (Ubuntu)	Undecided	Won't Fix
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	linux (Ubuntu Trusty)	Undecided	Invalid
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	linux (Ubuntu Xenial)	Undecided	Invalid
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	linux (Ubuntu Yakkety)	Undecided	Invalid
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	linux (Ubuntu Zesty)	Undecided	Won't Fix

Bug #1671864: Xen stable update to 4.6.5

Summary				In	Importance	Status
	1671864	Xen stable update to 4.6.5		xen (Ubuntu)	Medium	Invalid
	1671864	Xen stable update to 4.6.5		xen (Ubuntu Xenial)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://xenbits.xen.org...
SECTRACK: 1034512
BID: 79644