Denial Of Service (DoS)

2022-07-0816:02:59

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

27.7%

JSON

xen is vulnerable to denial of service. The vulnerability exists because the Linux Block and Network PV device frontends don’t zero memory regions before sharing them with the backend which leads to a memory corruption causing an application crash.

CPENameOperatorVersion
xen:3.15eq4.15.1-r0
xen:3.15eq4.15.2-r1
xen:3.15eq4.15.2-r0
xen:3.15eq4.15.1-r2
xen:3.15eq4.15.2-r2
xen:3.14eq4.15.1-r0
xen:3.14eq4.15.0-r0
xen:3.14eq4.15.2-r1
xen:3.14eq4.15.2-r0
xen:3.14eq4.15.1-r2

Name	Operator	Version
xen:3.15	eq	4.15.1-r0
xen:3.15	eq	4.15.2-r1
xen:3.15	eq	4.15.2-r0
xen:3.15	eq	4.15.1-r2
xen:3.15	eq	4.15.2-r2
xen:3.14	eq	4.15.1-r0
xen:3.14	eq	4.15.0-r0
xen:3.14	eq	4.15.2-r1
xen:3.14	eq	4.15.2-r0
xen:3.14	eq	4.15.1-r2