Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple memory leaks in Xen 4.0 through 4.6.x allow local guest administrators or domains with certain permission to cause a denial of service (memory consumption) via a large number of "teardowns" of domains with the vcpu pointer array allocated using the (1) XEN_DOMCTL_max_vcpus hypercall or the xenoprofile state vcpu pointer array allocated using the (2) XENOPROF_get_buffer or (3) XENOPROF_set_passive hypercall.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Xen 多个内存泄露漏洞
Vulnerability Description
Xen是英国剑桥大学开发的一款开源的虚拟机监视器产品。该产品能够使不同和不兼容的操作系统运行在同一台计算机上,并支持在运行时进行迁移,保证正常运行并且避免宕机。 Xen 4.0版本至4.6.x版本中存在多个内存泄露漏洞,这些漏洞源于程序使用XEN_DOMCTL_max_vcpus超级调用分配vcpu指针数组内存;使用XENOPROF_get_buffer和XENOPROF_set_passive超级调用分配xenoprofile state vcpu指针数组内存。本地攻击者可利用这些漏洞以特定的权限造成拒
CVSS Information
N/A
Vulnerability Type
N/A