DEBIAN-CVE-2015-2151

DEBIAN-CVE-2015-2151 PUBLISHED CVSS 9.300000190734863 CRITICAL

The x86 emulator in Xen 3.2.x through 4.5.x does not properly ignore segment overrides for instructions with register operands, which allows local guest users to obtain sensitive information, cause a denial of service (memory corruption), or possibly execute arbitrary code via unspecified vectors.

Risk Scores

CVSS v4.0

9.300000190734863

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Debian:11	xen	0, 0, 0
Debian:13	xen	0, 0, 0
Debian:14	xen	0, 0, 0
Debian:12	xen	0, 0, 0

Timeline

Mar 12, 2015 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2015-2151 advisory

Open in Interactive Console →