Launchpad.net

CVE 2015-7970

The p2m_pod_emergency_sweep function in arch/x86/mm/p2m-pod.c in Xen 3.4.x, 3.5.x, and 3.6.x is not preemptible, which allows local x86 HVM guest administrators to cause a denial of service (CPU consumption and possibly reboot) via crafted memory contents that triggers a "time-consuming linear scan," related to Populate-on-Demand.

Related bugs and status

CVE-2015-7970 (Candidate) is related to these bugs:

Bug #1671760: Xen HVM guests running linux 4.10 fail to boot on Intel hosts

		In	Importance	Status
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	xen (Ubuntu)	High	Fix Released
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	xen (Ubuntu Zesty)	High	Fix Released
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	xen (Ubuntu Trusty)	High	Fix Released
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	xen (Ubuntu Yakkety)	High	Fix Released
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	xen (Ubuntu Xenial)	High	Fix Released
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	linux (Ubuntu)	Undecided	Won't Fix
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	linux (Ubuntu Trusty)	Undecided	Invalid
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	linux (Ubuntu Xenial)	Undecided	Invalid
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	linux (Ubuntu Yakkety)	Undecided	Invalid
1671760	Xen HVM guests running linux 4.10 fail to boot on Intel hosts	linux (Ubuntu Zesty)	Undecided	Won't Fix

Bug #1671864: Xen stable update to 4.6.5

Summary				In	Importance	Status
	1671864	Xen stable update to 4.6.5		xen (Ubuntu)	Medium	Invalid
	1671864	Xen stable update to 4.6.5		xen (Ubuntu Xenial)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2015-7970

Related bugs and status

Related bugs

References