What is the severity of CVE-2015-8340?

CVE-2015-8340 has a medium severity level, primarily leading to potential denial of service.

How do I fix CVE-2015-8340?

To fix CVE-2015-8340, upgrade to a version of Xen that is not affected, specifically Xen 4.7.0 or later.

Which versions of Xen are affected by CVE-2015-8340?

CVE-2015-8340 affects Xen versions 3.2.x through 4.6.x.

What kind of exploit can occur from CVE-2015-8340?

CVE-2015-8340 can cause a denial of service due to deadlock or host crash.

Who can be impacted by CVE-2015-8340?

Guest OS administrators in environments running vulnerable versions of Xen can be affected by CVE-2015-8340.

Vulnerability/
CVE-2015-8340

medium

4.7

CWE

17/12/2015

6/8/2024

CVE-2015-8340

First published: Thu Dec 17 2015(Updated: )

The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service (deadlock or host crash) via unspecified vectors, related to XENMEM_exchange error handling.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Xen xen-unstable	=3.2.0
Xen xen-unstable	=3.2.1
Xen xen-unstable	=3.2.2
Xen xen-unstable	=3.2.3
Xen xen-unstable	=3.3.0
Xen xen-unstable	=3.3.1
Xen xen-unstable	=3.3.2
Xen xen-unstable	=3.4.0
Xen xen-unstable	=3.4.1
Xen xen-unstable	=3.4.2
Xen xen-unstable	=3.4.3
Xen xen-unstable	=3.4.4
Xen xen-unstable	=4.0.0
Xen xen-unstable	=4.0.1
Xen xen-unstable	=4.0.2
Xen xen-unstable	=4.0.3
Xen xen-unstable	=4.0.4
Xen xen-unstable	=4.1.0
Xen xen-unstable	=4.1.1
Xen xen-unstable	=4.1.2
Xen xen-unstable	=4.1.3
Xen xen-unstable	=4.1.4
Xen xen-unstable	=4.1.5
Xen xen-unstable	=4.1.6
Xen xen-unstable	=4.1.6.1
Xen xen-unstable	=4.2.0
Xen xen-unstable	=4.2.1
Xen xen-unstable	=4.2.2
Xen xen-unstable	=4.2.3
Xen xen-unstable	=4.2.4
Xen xen-unstable	=4.2.5
Xen xen-unstable	=4.3.0
Xen xen-unstable	=4.3.1
Xen xen-unstable	=4.3.2
Xen xen-unstable	=4.3.3
Xen xen-unstable	=4.3.4
Xen xen-unstable	=4.4.0
Xen xen-unstable	=4.4.1
Xen xen-unstable	=4.4.2
Xen xen-unstable	=4.4.3
Xen xen-unstable	=4.5.0
Xen xen-unstable	=4.5.1
Xen xen-unstable	=4.5.2
Xen xen-unstable	=4.6.0

Remedy

http://support.citrix.com/article/CTX203451

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-8340?
CVE-2015-8340 has a medium severity level, primarily leading to potential denial of service.
How do I fix CVE-2015-8340?
To fix CVE-2015-8340, upgrade to a version of Xen that is not affected, specifically Xen 4.7.0 or later.
Which versions of Xen are affected by CVE-2015-8340?
CVE-2015-8340 affects Xen versions 3.2.x through 4.6.x.
What kind of exploit can occur from CVE-2015-8340?
CVE-2015-8340 can cause a denial of service due to deadlock or host crash.
Who can be impacted by CVE-2015-8340?
Guest OS administrators in environments running vulnerable versions of Xen can be affected by CVE-2015-8340.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/weakness
agent/author
agent/last-modified-date
agent/remedy
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/xen
canonical/xen xen-unstable
version/xen xen-unstable/3.2.0
version/xen xen-unstable/3.2.1
version/xen xen-unstable/3.2.2
version/xen xen-unstable/3.2.3
version/xen xen-unstable/3.3.0
version/xen xen-unstable/3.3.1
version/xen xen-unstable/3.3.2
version/xen xen-unstable/3.4.0
version/xen xen-unstable/3.4.1
version/xen xen-unstable/3.4.2
version/xen xen-unstable/3.4.3
version/xen xen-unstable/3.4.4
version/xen xen-unstable/4.0.0
version/xen xen-unstable/4.0.1
version/xen xen-unstable/4.0.2
version/xen xen-unstable/4.0.3
version/xen xen-unstable/4.0.4
version/xen xen-unstable/4.1.0
version/xen xen-unstable/4.1.1
version/xen xen-unstable/4.1.2
version/xen xen-unstable/4.1.3
version/xen xen-unstable/4.1.4
version/xen xen-unstable/4.1.5
version/xen xen-unstable/4.1.6
version/xen xen-unstable/4.1.6.1
version/xen xen-unstable/4.2.0
version/xen xen-unstable/4.2.1
version/xen xen-unstable/4.2.2
version/xen xen-unstable/4.2.3
version/xen xen-unstable/4.2.4
version/xen xen-unstable/4.2.5
version/xen xen-unstable/4.3.0
version/xen xen-unstable/4.3.1
version/xen xen-unstable/4.3.2
version/xen xen-unstable/4.3.3
version/xen xen-unstable/4.3.4
version/xen xen-unstable/4.4.0
version/xen xen-unstable/4.4.1
version/xen xen-unstable/4.4.2
version/xen xen-unstable/4.4.3
version/xen xen-unstable/4.5.0
version/xen xen-unstable/4.5.1
version/xen xen-unstable/4.5.2
version/xen xen-unstable/4.6.0