CVE-2015-4164

Name of the Vulnerable Software and Affected Versions Xen versions 3.1 through 4.5

Description The issue is related to the compat iret function in Xen, which incorrectly iterates through a loop. This allows local 32-bit PV guest administrators to cause a denial of service, resulting in a large loop and system hang, by making a hypercall iret call with the EFLAGS.VM parameter set. The vulnerability is associated with resource management errors in the Xen hypervisor.

Recommendations For Xen versions 3.1 through 4.5, consider restricting the use of the hypercall iret function with the EFLAGS.VM parameter set until a patch is available. As a temporary workaround, limiting the ability of local 32-bit PV guest administrators to make such calls may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.