Xen allows guest OS users to obtain sensitive information from uninitialized locations in host OS kernel memory by not enabling memory and I/O decoding control bits. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-0777.
CPE | Name | Operator | Version |
---|---|---|---|
enterprise_linux | eq | 5 |