GNTTABOP_swap_grant_ref in Xen 4.2 through 4.5 does not check the grant table operation version, which allows local guest domains to cause a denial of service (NULL pointer dereference) via a hypercall without a GNTTABOP_setup_table or GNTTABOP_set_version.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2015-06-15 08:59
Updated : 2018-10-30 09:26
NVD link : CVE-2015-4163
Mitre link : CVE-2015-4163
JSON object : View
CWE
Products Affected
xen
- xen