CVE-2015-8340 - Vulnerability Details

Vendors	Products
Xen	Xen

Link	Providers
http://support.citrix.com/article/CTX203451
http://www.debian.org/security/2016/dsa-3519
http://www.securityfocus.com/bid/79038
http://www.securitytracker.com/id/1034391
http://xenbits.xen.org/xsa/advisory-159.html
https://nvd.nist.gov/vuln/detail/CVE-2015-8340
https://security.gentoo.org/glsa/201604-03
https://www.cve.org/CVERecord?id=CVE-2015-8340

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-12-08T00:00:00", "descriptions": [{"lang": "en", "value": "The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service (deadlock or host crash) via unspecified vectors, related to XENMEM_exchange error handling."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-06-30T16:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "DSA-3519", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2016/dsa-3519"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://xenbits.xen.org/xsa/advisory-159.html"}, {"name": "1034391", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1034391"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.citrix.com/article/CTX203451"}, {"name": "GLSA-201604-03", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201604-03"}, {"name": "79038", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/79038"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2015-8340", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service (deadlock or host crash) via unspecified vectors, related to XENMEM_exchange error handling."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "DSA-3519", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2016/dsa-3519"}, {"name": "http://xenbits.xen.org/xsa/advisory-159.html", "refsource": "CONFIRM", "url": "http://xenbits.xen.org/xsa/advisory-159.html"}, {"name": "1034391", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1034391"}, {"name": "http://support.citrix.com/article/CTX203451", "refsource": "CONFIRM", "url": "http://support.citrix.com/article/CTX203451"}, {"name": "GLSA-201604-03", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201604-03"}, {"name": "79038", "refsource": "BID", "url": "http://www.securityfocus.com/bid/79038"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T08:13:32.279Z"}, "title": "CVE Program Container", "references": [{"name": "DSA-3519", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2016/dsa-3519"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://xenbits.xen.org/xsa/advisory-159.html"}, {"name": "1034391", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1034391"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.citrix.com/article/CTX203451"}, {"name": "GLSA-201604-03", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "https://security.gentoo.org/glsa/201604-03"}, {"name": "79038", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/79038"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2015-8340", "datePublished": "2015-12-17T19:00:00", "dateReserved": "2015-11-25T00:00:00", "dateUpdated": "2024-08-06T08:13:32.279Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2015-12-08T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service (deadlock or host crash) via unspecified vectors, related to XENMEM_exchange error handling. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2017-06-30T16:57:01 (string)

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

}

references : [ »

0 : { »

name : DSA-3519 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_DEBIAN (string)

]

url : http://www.debian.org/security/2016/dsa-3519 (string)

}

1 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://xenbits.xen.org/xsa/advisory-159.html (string)

}

2 : { »

name : 1034391 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

]

url : http://www.securitytracker.com/id/1034391 (string)

}

3 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://support.citrix.com/article/CTX203451 (string)

}

4 : { »

name : GLSA-201604-03 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_GENTOO (string)

]

url : https://security.gentoo.org/glsa/201604-03 (string)

}

5 : { »

name : 79038 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

]

url : http://www.securityfocus.com/bid/79038 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cve@mitre.org (string)

ID : CVE-2015-8340 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service (deadlock or host crash) via unspecified vectors, related to XENMEM_exchange error handling. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : DSA-3519 (string)

refsource : DEBIAN (string)

url : http://www.debian.org/security/2016/dsa-3519 (string)

}

1 : { »

name : http://xenbits.xen.org/xsa/advisory-159.html (string)

refsource : CONFIRM (string)

url : http://xenbits.xen.org/xsa/advisory-159.html (string)

}

2 : { »

name : 1034391 (string)

refsource : SECTRACK (string)

url : http://www.securitytracker.com/id/1034391 (string)

}

3 : { »

name : http://support.citrix.com/article/CTX203451 (string)

refsource : CONFIRM (string)

url : http://support.citrix.com/article/CTX203451 (string)

}

4 : { »

name : GLSA-201604-03 (string)

refsource : GENTOO (string)

url : https://security.gentoo.org/glsa/201604-03 (string)

}

5 : { »

name : 79038 (string)

refsource : BID (string)

url : http://www.securityfocus.com/bid/79038 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-06T08:13:32.279Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : DSA-3519 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_DEBIAN (string)

2 : x_transferred (string)

]

url : http://www.debian.org/security/2016/dsa-3519 (string)

}

1 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://xenbits.xen.org/xsa/advisory-159.html (string)

}

2 : { »

name : 1034391 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

2 : x_transferred (string)

]

url : http://www.securitytracker.com/id/1034391 (string)

}

3 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://support.citrix.com/article/CTX203451 (string)

}

4 : { »

name : GLSA-201604-03 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_GENTOO (string)

2 : x_transferred (string)

]

url : https://security.gentoo.org/glsa/201604-03 (string)

}

5 : { »

name : 79038 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

2 : x_transferred (string)

]

url : http://www.securityfocus.com/bid/79038 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

cveId : CVE-2015-8340 (string)

datePublished : 2015-12-17T19:00:00 (string)

dateReserved : 2015-11-25T00:00:00 (string)

dateUpdated : 2024-08-06T08:13:32.279Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:xen:xen:3.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "B81B6EEB-D01E-432D-AEBF-707409741C0A", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:3.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "2A4B60DE-A8C0-459E-A99C-6EF0D3264B75", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:3.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "A83F4F7E-53CF-4066-857B-2154D25979D8", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:3.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "048E790E-B0A1-4504-9299-0B6D9CB0C509", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:3.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "EB157D09-B91B-486A-A9F7-C9BA75AE8823", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:3.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "FA95119D-EAF1-48D4-AE7C-0C4927D06CDF", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:3.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "5D40E4E4-3FCB-4980-8DD2-49DDABCB398E", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:3.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "7F7D1B7E-C30F-430F-832D-2A405DA1F2D9", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:3.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "B7C1D0AD-B804-474C-96A3-988BADA0DAD2", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:3.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "1DCD1F05-9F96-40DD-B506-750E87306325", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:3.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "25B6AE42-E1EB-47A8-8FAF-7A93A67EC67F", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:3.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "60BADA43-94D5-4E80-B5C8-D01A0249F13E", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "550223A9-B9F1-440A-8C25-9F0F76AF7301", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "FC734D58-96E5-4DD2-8781-F8E0ADB96462", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "62CEC1BF-1922-410D-BCBA-C58199F574C7", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "923F2C2B-4A65-4823-B511-D0FEB7C7FAB2", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "C1A24DED-B2EC-4D9C-9FA4-DD37EF3E3BFC", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "0D532B60-C8DD-4A2F-9D05-E574D23EB754", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "5D83CA8B-8E49-45FA-8FAB-C15052474542", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "27537DF5-7E0F-463F-BA87-46E329EE07AC", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "3EA4F978-9145-4FE6-B4F9-15207E52C40A", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "22A995FD-9B7F-4DF0-BECF-4B086E470F1E", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "219597E2-E2D7-4647-8A7C-688B96300158", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.6:*:*:*:*:*:*:*", "matchCriteriaId": "A0C59417-493C-493A-9AB2-317F240BF387", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "65E55950-EACA-4209-B2A1-E09026FC6006", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "8F0AF8EF-6FF6-4E22-B16E-82C9F90C6B00", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "47640819-FC43-49ED-8A77-728C3D7255B3", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "2448537F-87AD-45C1-9FB0-7A49CA31BD76", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "E36B2265-70E1-413B-A7CF-79D39E9ADCFB", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "37148A72-BE20-45C5-8589-2309ED84D08C", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.5:*:*:*:*:*:*:*", "matchCriteriaId": "FB736B4C-325A-4B27-8C8A-15E60B8A8C82", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "BF948E6A-07BE-4C7D-8A98-002E89D35F4D", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "C0E23B94-1726-4F63-84BB-8D83FAB156D7", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "C76124AB-4E3D-4BE0-AAEA-7FC05868E2FB", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "F30B5EF5-0AE8-420B-A103-B1B25A372F09", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "F784EF07-DBEC-492A-A0F4-F9F7B2551A0B", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "1044792C-D544-457C-9391-4F3B5BAB978D", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "FBD9AD01-50B7-4951-8A73-A6CF4801A487", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "89AA8FD5-E997-4F0D-AFB6-FFBE0073BA5D", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "75615D84-9CA1-456C-816D-768E37B074A4", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "90CCECD0-C0F9-45A8-8699-64428637EBCA", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "F0ED340C-6746-471E-9F2D-19D62D224B7A", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "99BD7C4F-DE4C-4508-B20D-46A94B616C5B", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "4B6F7CE9-C409-4D88-9A99-B21420633F45", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service (deadlock or host crash) via unspecified vectors, related to XENMEM_exchange error handling."}, {"lang": "es", "value": "La funci\u00f3n memory_exchange en common/memory.c en Xen 3.2.x hasta la versi\u00f3n 4.6.x no devuelve adecuadamente p\u00e1ginas a un dominio, lo que podr\u00eda permitir a administradores invitados del SO causar una denegaci\u00f3n de servicio (interbloqueo o ca\u00edda del host) a trav\u00e9s de vectores no especificados, relacionados con un error de manejo XENMEM_exchange."}], "id": "CVE-2015-8340", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 4.7, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-12-17T19:59:08.683", "references": [{"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://support.citrix.com/article/CTX203451"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2016/dsa-3519"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/79038"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id/1034391"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://xenbits.xen.org/xsa/advisory-159.html"}, {"source": "cve@mitre.org", "url": "https://security.gentoo.org/glsa/201604-03"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://support.citrix.com/article/CTX203451"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.debian.org/security/2016/dsa-3519"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/79038"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1034391"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://xenbits.xen.org/xsa/advisory-159.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.gentoo.org/glsa/201604-03"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-17"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:xen:xen:3.2.0:*:*:*:*:*:*:* (string)

matchCriteriaId : B81B6EEB-D01E-432D-AEBF-707409741C0A (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:xen:xen:3.2.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 2A4B60DE-A8C0-459E-A99C-6EF0D3264B75 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:xen:xen:3.2.2:*:*:*:*:*:*:* (string)

matchCriteriaId : A83F4F7E-53CF-4066-857B-2154D25979D8 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:xen:xen:3.2.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 048E790E-B0A1-4504-9299-0B6D9CB0C509 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:xen:xen:3.3.0:*:*:*:*:*:*:* (string)

matchCriteriaId : EB157D09-B91B-486A-A9F7-C9BA75AE8823 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:xen:xen:3.3.1:*:*:*:*:*:*:* (string)

matchCriteriaId : FA95119D-EAF1-48D4-AE7C-0C4927D06CDF (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:xen:xen:3.3.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 5D40E4E4-3FCB-4980-8DD2-49DDABCB398E (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:xen:xen:3.4.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 7F7D1B7E-C30F-430F-832D-2A405DA1F2D9 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:xen:xen:3.4.1:*:*:*:*:*:*:* (string)

matchCriteriaId : B7C1D0AD-B804-474C-96A3-988BADA0DAD2 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:xen:xen:3.4.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 1DCD1F05-9F96-40DD-B506-750E87306325 (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:o:xen:xen:3.4.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 25B6AE42-E1EB-47A8-8FAF-7A93A67EC67F (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:o:xen:xen:3.4.4:*:*:*:*:*:*:* (string)

matchCriteriaId : 60BADA43-94D5-4E80-B5C8-D01A0249F13E (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 550223A9-B9F1-440A-8C25-9F0F76AF7301 (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:o:xen:xen:4.0.1:*:*:*:*:*:*:* (string)

matchCriteriaId : FC734D58-96E5-4DD2-8781-F8E0ADB96462 (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:o:xen:xen:4.0.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 62CEC1BF-1922-410D-BCBA-C58199F574C7 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:o:xen:xen:4.0.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 923F2C2B-4A65-4823-B511-D0FEB7C7FAB2 (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:o:xen:xen:4.0.4:*:*:*:*:*:*:* (string)

matchCriteriaId : C1A24DED-B2EC-4D9C-9FA4-DD37EF3E3BFC (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 0D532B60-C8DD-4A2F-9D05-E574D23EB754 (string)

vulnerable : true (boolean)

}

18 : { »

criteria : cpe:2.3:o:xen:xen:4.1.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 5D83CA8B-8E49-45FA-8FAB-C15052474542 (string)

vulnerable : true (boolean)

}

19 : { »

criteria : cpe:2.3:o:xen:xen:4.1.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 27537DF5-7E0F-463F-BA87-46E329EE07AC (string)

vulnerable : true (boolean)

}

20 : { »

criteria : cpe:2.3:o:xen:xen:4.1.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 3EA4F978-9145-4FE6-B4F9-15207E52C40A (string)

vulnerable : true (boolean)

}

21 : { »

criteria : cpe:2.3:o:xen:xen:4.1.4:*:*:*:*:*:*:* (string)

matchCriteriaId : 22A995FD-9B7F-4DF0-BECF-4B086E470F1E (string)

vulnerable : true (boolean)

}

22 : { »

criteria : cpe:2.3:o:xen:xen:4.1.5:*:*:*:*:*:*:* (string)

matchCriteriaId : 219597E2-E2D7-4647-8A7C-688B96300158 (string)

vulnerable : true (boolean)

}

23 : { »

criteria : cpe:2.3:o:xen:xen:4.1.6:*:*:*:*:*:*:* (string)

matchCriteriaId : A0C59417-493C-493A-9AB2-317F240BF387 (string)

vulnerable : true (boolean)

}

24 : { »

criteria : cpe:2.3:o:xen:xen:4.1.6.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 65E55950-EACA-4209-B2A1-E09026FC6006 (string)

vulnerable : true (boolean)

}

25 : { »

criteria : cpe:2.3:o:xen:xen:4.2.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 8F0AF8EF-6FF6-4E22-B16E-82C9F90C6B00 (string)

vulnerable : true (boolean)

}

26 : { »

criteria : cpe:2.3:o:xen:xen:4.2.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 47640819-FC43-49ED-8A77-728C3D7255B3 (string)

vulnerable : true (boolean)

}

27 : { »

criteria : cpe:2.3:o:xen:xen:4.2.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 2448537F-87AD-45C1-9FB0-7A49CA31BD76 (string)

vulnerable : true (boolean)

}

28 : { »

criteria : cpe:2.3:o:xen:xen:4.2.3:*:*:*:*:*:*:* (string)

matchCriteriaId : E36B2265-70E1-413B-A7CF-79D39E9ADCFB (string)

vulnerable : true (boolean)

}

29 : { »

criteria : cpe:2.3:o:xen:xen:4.2.4:*:*:*:*:*:*:* (string)

matchCriteriaId : 37148A72-BE20-45C5-8589-2309ED84D08C (string)

vulnerable : true (boolean)

}

30 : { »

criteria : cpe:2.3:o:xen:xen:4.2.5:*:*:*:*:*:*:* (string)

matchCriteriaId : FB736B4C-325A-4B27-8C8A-15E60B8A8C82 (string)

vulnerable : true (boolean)

}

31 : { »

criteria : cpe:2.3:o:xen:xen:4.3.0:*:*:*:*:*:*:* (string)

matchCriteriaId : BF948E6A-07BE-4C7D-8A98-002E89D35F4D (string)

vulnerable : true (boolean)

}

32 : { »

criteria : cpe:2.3:o:xen:xen:4.3.1:*:*:*:*:*:*:* (string)

matchCriteriaId : C0E23B94-1726-4F63-84BB-8D83FAB156D7 (string)

vulnerable : true (boolean)

}

33 : { »

criteria : cpe:2.3:o:xen:xen:4.3.2:*:*:*:*:*:*:* (string)

matchCriteriaId : C76124AB-4E3D-4BE0-AAEA-7FC05868E2FB (string)

vulnerable : true (boolean)

}

34 : { »

criteria : cpe:2.3:o:xen:xen:4.3.3:*:*:*:*:*:*:* (string)

matchCriteriaId : F30B5EF5-0AE8-420B-A103-B1B25A372F09 (string)

vulnerable : true (boolean)

}

35 : { »

criteria : cpe:2.3:o:xen:xen:4.3.4:*:*:*:*:*:*:* (string)

matchCriteriaId : F784EF07-DBEC-492A-A0F4-F9F7B2551A0B (string)

vulnerable : true (boolean)

}

36 : { »

criteria : cpe:2.3:o:xen:xen:4.4.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 1044792C-D544-457C-9391-4F3B5BAB978D (string)

vulnerable : true (boolean)

}

37 : { »

criteria : cpe:2.3:o:xen:xen:4.4.1:*:*:*:*:*:*:* (string)

matchCriteriaId : FBD9AD01-50B7-4951-8A73-A6CF4801A487 (string)

vulnerable : true (boolean)

}

38 : { »

criteria : cpe:2.3:o:xen:xen:4.4.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 89AA8FD5-E997-4F0D-AFB6-FFBE0073BA5D (string)

vulnerable : true (boolean)

}

39 : { »

criteria : cpe:2.3:o:xen:xen:4.4.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 75615D84-9CA1-456C-816D-768E37B074A4 (string)

vulnerable : true (boolean)

}

40 : { »

criteria : cpe:2.3:o:xen:xen:4.5.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 90CCECD0-C0F9-45A8-8699-64428637EBCA (string)

vulnerable : true (boolean)

}

41 : { »

criteria : cpe:2.3:o:xen:xen:4.5.1:*:*:*:*:*:*:* (string)

matchCriteriaId : F0ED340C-6746-471E-9F2D-19D62D224B7A (string)

vulnerable : true (boolean)

}

42 : { »

criteria : cpe:2.3:o:xen:xen:4.5.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 99BD7C4F-DE4C-4508-B20D-46A94B616C5B (string)

vulnerable : true (boolean)

}

43 : { »

criteria : cpe:2.3:o:xen:xen:4.6.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 4B6F7CE9-C409-4D88-9A99-B21420633F45 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service (deadlock or host crash) via unspecified vectors, related to XENMEM_exchange error handling. (string)

}

1 : { »

lang : es (string)

value : La función memory_exchange en common/memory.c en Xen 3.2.x hasta la versión 4.6.x no devuelve adecuadamente páginas a un dominio, lo que podría permitir a administradores invitados del SO causar una denegación de servicio (interbloqueo o caída del host) a través de vectores no especificados, relacionados con un error de manejo XENMEM_exchange. (string)

}

]

id : CVE-2015-8340 (string)

lastModified : 2025-04-12T10:46:40.837 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : MEDIUM (string)

accessVector : LOCAL (string)

authentication : NONE (string)

availabilityImpact : COMPLETE (string)

baseScore : 4.7 (number)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

vectorString : AV:L/AC:M/Au:N/C:N/I:N/A:C (string)

version : 2.0 (string)

}

exploitabilityScore : 3.4 (number)

impactScore : 6.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2015-12-17T19:59:08.683 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Patch (string)

]

url : http://support.citrix.com/article/CTX203451 (string)

}

1 : { »

source : cve@mitre.org (string)

url : http://www.debian.org/security/2016/dsa-3519 (string)

}

2 : { »

source : cve@mitre.org (string)

url : http://www.securityfocus.com/bid/79038 (string)

}

3 : { »

source : cve@mitre.org (string)

url : http://www.securitytracker.com/id/1034391 (string)

}

4 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://xenbits.xen.org/xsa/advisory-159.html (string)

}

5 : { »

source : cve@mitre.org (string)

url : https://security.gentoo.org/glsa/201604-03 (string)

}

6 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : http://support.citrix.com/article/CTX203451 (string)

}

7 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.debian.org/security/2016/dsa-3519 (string)

}

8 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.securityfocus.com/bid/79038 (string)

}

9 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.securitytracker.com/id/1034391 (string)

}

10 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://xenbits.xen.org/xsa/advisory-159.html (string)

}

11 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://security.gentoo.org/glsa/201604-03 (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-17 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Show plain JSON

{"acknowledgement": "Red Hat would like to thank the Xen project for reporting this issue. Upstream acknowledges Jan Beulich (SUSE) and Julien Grall (Citrix) as the original reporters.", "bugzilla": {"description": "xen: XENMEM_exchange error handling may cause DoS to host", "id": "1284919", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1284919"}, "csaw": false, "cvss": {"cvss_base_score": "6.3", "cvss_scoring_vector": "AV:N/AC:M/Au:S/C:N/I:N/A:C", "status": "draft"}, "cvss3": {"cvss3_base_score": "6.2", "cvss3_scoring_vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "status": "draft"}, "cwe": "CWE-667", "details": ["The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service (deadlock or host crash) via unspecified vectors, related to XENMEM_exchange error handling.", "A malicious guest administrator may be able to deny service by crashing the host or causing a deadlock by timing memory handling events between the guest and the host."], "mitigation": {"lang": "en:us", "value": "The vulnerability can be avoided if the guest kernel is controlled by the host rather than guest administrator, provided that further steps are taken to prevent the guest administrator from loading code into the kernel (e.g. by disabling loadable modules etc) or from using other mechanisms which allow them to run code at kernel privilege. In Xen HVM, controlling the guest's kernel would involve locking down the bootloader."}, "name": "CVE-2015-8340", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Will not fix", "package_name": "xen", "product_name": "Red Hat Enterprise Linux 5"}], "public_date": "2015-12-08T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2015-8340\nhttps://nvd.nist.gov/vuln/detail/CVE-2015-8340\nhttp://xenbits.xen.org/xsa/advisory-159.html"], "statement": "This issue does not affect the Linux kernel packages as shipped with Red Hat\nEnterprise Linux 6, 7, MRG-2 and realtime kernels.\nAt this time, there is no plans to fix this issue, if you feel that this issue\nis affecting your deployment and have an EUS subscription, please contact\nsupport to have this issue correctly prioritized", "threat_severity": "Moderate"}

{

acknowledgement : Red Hat would like to thank the Xen project for reporting this issue. Upstream acknowledges Jan Beulich (SUSE) and Julien Grall (Citrix) as the original reporters. (string)

bugzilla : { »

description : xen: XENMEM_exchange error handling may cause DoS to host (string)

id : 1284919 (string)

url : https://bugzilla.redhat.com/show_bug.cgi?id=1284919 (string)

}

csaw : false (boolean)

cvss : { »

cvss_base_score : 6.3 (string)

cvss_scoring_vector : AV:N/AC:M/Au:S/C:N/I:N/A:C (string)

status : draft (string)

}

cvss3 : { »

cvss3_base_score : 6.2 (string)

cvss3_scoring_vector : CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (string)

status : draft (string)

}

cwe : CWE-667 (string)

details : [ »

0 : The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service (deadlock or host crash) via unspecified vectors, related to XENMEM_exchange error handling. (string)

1 : A malicious guest administrator may be able to deny service by crashing the host or causing a deadlock by timing memory handling events between the guest and the host. (string)

]

mitigation : { »

lang : en:us (string)

value : The vulnerability can be avoided if the guest kernel is controlled by the host rather than guest administrator, provided that further steps are taken to prevent the guest administrator from loading code into the kernel (e.g. by disabling loadable modules etc) or from using other mechanisms which allow them to run code at kernel privilege. In Xen HVM, controlling the guest's kernel would involve locking down the bootloader. (string)

}

name : CVE-2015-8340 (string)

package_state : [ »

0 : { »

cpe : cpe:/o:redhat:enterprise_linux:5 (string)

fix_state : Will not fix (string)

package_name : xen (string)

product_name : Red Hat Enterprise Linux 5 (string)

}

]

public_date : 2015-12-08T00:00:00Z (string)

references : [ »

0 : https://www.cve.org/CVERecord?id=CVE-2015-8340 https://nvd.nist.gov/vuln/detail/CVE-2015-8340 http://xenbits.xen.org/xsa/advisory-159.html (string)

]

statement : This issue does not affect the Linux kernel packages as shipped with Red Hat Enterprise Linux 6, 7, MRG-2 and realtime kernels. At this time, there is no plans to fix this issue, if you feel that this issue is affecting your deployment and have an EUS subscription, please contact support to have this issue correctly prioritized (string)

threat_severity : Moderate (string)

}

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object