VDB

DEBIAN-CVE-2015-8555

DEBIAN-CVE-2015-8555 PUBLISHED CVSS 8.600000381469727 HIGH

Xen 4.6.x, 4.5.x, 4.4.x, 4.3.x, and earlier do not initialize x86 FPU stack and XMM registers when XSAVE/XRSTOR are not used to manage guest extended register state, which allows local guest domains to obtain sensitive information from other domains via unspecified vectors.

Risk Scores

CVSS v3.0
8.600000381469727
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected Products

VendorProductVersions
Debian:14xen0, 0, 0
Debian:11xen0, 0, 0
Debian:13xen0, 0, 0
Debian:12xen0, 0, 0

Timeline

  • Apr 13, 2016 CVE Published
  • Apr 28, 2026 CVE Updated

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›