FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

xen-tools -- Unsanitised guest input in libxl device handling code

Affected packages
xen-tools < 4.7.0_1

Details

VuXML ID e2fca11b-4212-11e6-942d-bc5ff45d0f28
Discovery 2016-06-02
Entry 2016-07-04

The Xen Project reports:

Various parts of libxl device-handling code inappropriately use information from (partially) guest controlled areas of xenstore.

A malicious guest administrator can cause denial of service by resource exhaustion.

A malicious guest administrator can confuse and/or deny service to management facilities.

A malicious guest administrator of a guest configured with channel devices may be able to escalate their privilege to that of the backend domain (i.e., normally, to that of the host).

References

CVE Name CVE-2016-4962
URL http://xenbits.xen.org/xsa/advisory-175.html