CVE-2015-4163

Name of the Vulnerable Software and Affected Versions Xen versions 4.2 through 4.5

Description The issue is related to the GNTTABOP swap grant ref function in Xen, which does not check the grant table operation version. This allows local guest domains to cause a denial of service via a hypercall without a GNTTABOP setup table or GNTTABOP set version. The vulnerability is associated with pointer dereference errors. An attacker, acting locally, can exploit this issue to cause a denial of service by creating a hypercall to the GNTTABOP setup table or GNTTABOP set version functions.

Recommendations For Xen versions 4.2 through 4.5, consider disabling the GNTTABOP swap grant ref function as a temporary workaround until a patch is available. Restrict access to the GNTTABOP setup table and GNTTABOP set version functions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.