NuytsTech Security

CVE-2015-4164

by ·

The compat_iret function in Xen 3.1 through 4.5 iterates the wrong way through a loop, which allows local 32-bit PV guest administrators to cause a denial of service (large loop and system hang) via a hypercall_iret call with EFLAGS.VM set.

Date published : 2015-06-15

http://www.securityfocus.com/bid/75149

http://support.citrix.com/article/CTX201145

Tags: