PT-2015-7802 · Citrix+2 · Xen+2

Konrad Rzeszutek Wilk

Published

2015-12-17

Updated

2017-11-04

CVE-2015-8552

CVSS v3.1

4.4

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Xen versions 3.1.x through 4.3.x

Description The issue allows local guest administrators to generate a continuous stream of WARN messages and cause a denial of service by consuming disk space. This can be achieved by leveraging a system with access to a passed-through MSI or MSI-X capable physical PCI device and utilizing XEN PCI OP enable msi operations.

Recommendations For versions 3.1.x through 4.3.x, consider restricting access to the XEN PCI OP enable msi operations to prevent the generation of a continuous stream of WARN messages and subsequent denial of service. As a temporary workaround, limit the ability of local guest administrators to access passed-through MSI or MSI-X capable physical PCI devices until a patch is available.

Exploit

Fix

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2015-8552

DSA-3434-1

MGASA-2016-0005

MGASA-2016-0014

MGASA-2016-0015

OPENSUSE-SU-2016_0280-1

OPENSUSE-SU-2016_0301-1

OPENSUSE-SU-2016_0318-1

OPENSUSE-SU-2016_2184-1

SUSE-SU-2016:0168-1

SUSE-SU-2016:0911-1

SUSE-SU-2016:1102-1

SUSE-SU-2016:1203-1

SUSE-SU-2016:1707-1

SUSE-SU-2016:1764-1

SUSE-SU-2016:1937-1

SUSE-SU-2016:2105-1

USN-2846-1

USN-2847-1

USN-2848-1

USN-2849-1

USN-2850-1

USN-2851-1

USN-2853-1

USN-2854-1

Affected Products

Suse

Ubuntu

Xen

PT-2015-7802 · Citrix+2 · Xen+2

CVE-2015-8552

Weakness Enumeration

Related Identifiers

Affected Products

References · 699