CVE-2015-6654

Name of the Vulnerable Software and Affected Versions Xen versions 4.5.x, 4.4.x, and earlier

Description The issue is related to the xenmem add to physmap one function in arch/arm/mm.c, which does not limit the number of printk console messages when reporting a failure to retrieve a reference on a foreign page. This allows remote domains to cause a denial of service by leveraging permissions to map the memory of a foreign guest.

Recommendations For Xen versions 4.5.x, 4.4.x, and earlier, consider restricting permissions to map the memory of a foreign guest to minimize the risk of exploitation. As a temporary workaround, consider limiting the number of printk console messages to prevent a denial of service.