Use-after-free vulnerability in QEMU in Xen 4.5.x and earlier does not completely unplug emulated block devices, which allows local HVM guest users to gain privileges by unplugging a block device twice.
References
Information
Published : 2015-08-12 07:59
Updated : 2018-10-30 09:26
NVD link : CVE-2015-5166
Mitre link : CVE-2015-5166
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
xen
- xen
fedoraproject
- fedora