CVE-2020-15564

Name of the Vulnerable Software and Affected Versions: Xen versions through 4.13.x

Description: An issue in Xen allows Arm guest OS users to cause a hypervisor crash due to a missing alignment check in the VCPUOP register vcpu info hypercall. This hypercall is used by a guest to register a shared region with the hypervisor, which will be mapped into Xen address space for direct access. On Arm systems, the region is accessed with instructions requiring specific alignment, but there is no check to ensure the address provided by the guest is correctly aligned. A malicious guest could cause a hypervisor crash by passing a misaligned address, resulting in a Denial of Service (DoS). Only Arm systems are vulnerable, while x86 systems are not affected.

Recommendations: For Xen versions through 4.13.x, as a temporary workaround, consider disabling the VCPUOP register vcpu info hypercall until a patch is available to prevent a malicious guest from causing a hypervisor crash. At the moment, there is no information about a newer version that contains a fix for this vulnerability.