Vulnerabilities

CVE-2015-3340

by Fred · 28/04/2015

Xen 4.2.x through 4.5.x does not initialize certain fields, which allows certain remote service domains to obtain sensitive information from memory via a (1) XEN_DOMCTL_gettscinfo or (2) XEN_SYSCTL_getdomaininfolist request.

Date published : 2015-04-28

http://www.securityfocus.com/bid/74248

http://xenbits.xen.org/xsa/advisory-132.html

Related

Tags: Cybersecurity Alert