CVE-2015-7971

Name of the Vulnerable Software and Affected Versions Xen versions 3.2.x through 4.6.x

Description The issue allows local guests to cause a denial of service via a sequence of crafted hypercalls, specifically HYPERCALL xenoprof op or HYPERVISOR xenpmu op, which are not properly handled in the do xenoprof op function in common/xenoprof.c or the do xenpmu op function in arch/x86/cpu/vpmu.c, respectively. This occurs because Xen does not limit the number of printk console messages when logging certain pmu and profiling hypercalls.

Recommendations For Xen versions 3.2.x through 4.6.x, consider disabling the do xenoprof op and do xenpmu op functions as a temporary workaround until a patch is available. Restrict access to the HYPERCALL xenoprof op and HYPERVISOR xenpmu op hypercalls to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.