DEBIAN-CVE-2015-8341

DEBIAN-CVE-2015-8341 PUBLISHED CVSS 8.699999809265137 HIGH

The libxl toolstack library in Xen 4.1.x through 4.6.x does not properly release mappings of files used as kernels and initial ramdisks when managing multiple domains in the same process, which allows attackers to cause a denial of service (memory and disk consumption) by starting domains.

Risk Scores

CVSS v4.0

8.699999809265137

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products

Vendor	Product	Versions
Debian:13	xen	0, 0, 0
Debian:11	xen	0, 0, 0
Debian:14	xen	0, 0, 0
Debian:12	xen	0, 0, 0

Timeline

Dec 17, 2015 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2015-8341 advisory

Open in Interactive Console →