CVE-2015-8104

The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service (host OS panic or hang) by triggering many #DB (aka Debug) exceptions, related to svm.c.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
CISA-ADPADP
10 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 59%
VendorProductVersion
xenxen
4.3.0
xenxen
4.3.1
xenxen
4.3.2
xenxen
4.3.3
xenxen
4.3.4
xenxen
4.4.0
xenxen
4.4.1
xenxen
4.4.2
xenxen
4.4.3
xenxen
4.5.0
xenxen
4.5.1
xenxen
4.5.2
xenxen
4.6.0
xenxen
4.6.1
xenxen
4.6.2
xenxen
4.6.4
xenxen
4.6.5
oraclesolaris
11.3
oraclevm_virtualbox
4.0.0 ≤
𝑥
≤ 4.0.34
oraclevm_virtualbox
4.1.0 ≤
𝑥
≤ 4.1.42
oraclevm_virtualbox
4.2.0 ≤
𝑥
≤ 4.2.34
oraclevm_virtualbox
4.3.0 ≤
𝑥
≤ 4.3.35
oraclevm_virtualbox
5.0.0 ≤
𝑥
≤ 5.0.13
linuxlinux_kernel
𝑥
≤ 4.2.3
debiandebian_linux
7.0
debiandebian_linux
8.0
debiandebian_linux
9.0
canonicalubuntu_linux
12.04
canonicalubuntu_linux
14.04
canonicalubuntu_linux
15.04
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
fixed
squeeze
no-dsa
bullseye (security)
5.10.226-1
fixed
bookworm
6.1.106-3
fixed
bookworm (security)
6.1.112-1
fixed
trixie
6.11.5-1
fixed
sid
6.11.6-1
fixed
virtualbox
sid/contrib
7.0.20-dfsg-1
fixed
squeeze
no-dsa
xen
bullseye
4.14.6-1
fixed
squeeze
no-dsa
bullseye (security)
4.14.5+94-ge49571868d-1
fixed
bookworm
4.17.3+10-g091466ba55-1~deb12u1
fixed
sid
4.17.3+36-g54dacb5c02-1
fixed
trixie
4.17.3+36-g54dacb5c02-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
linux
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
Fixed 4.2.0-21.25
released
vivid
Fixed 3.19.0-41.46
released
trusty
Fixed 3.13.0-73.116
released
precise
Fixed 3.2.0-96.136
released
linux-armadaxp
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
not-affected
linux-aws
zesty
dne
yakkety
dne
xenial
not-affected
trusty
not-affected
precise
dne
linux-ec2
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
dne
linux-flo
zesty
dne
yakkety
not-affected
xenial
not-affected
wily
not-affected
vivid
not-affected
trusty
dne
precise
dne
linux-fsl-imx51
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
dne
linux-gke
zesty
dne
yakkety
dne
xenial
not-affected
trusty
dne
precise
dne
linux-goldfish
zesty
ignored
yakkety
ignored
xenial
ignored
wily
ignored
vivid
ignored
trusty
dne
precise
dne
linux-grouper
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
dne
linux-hwe
zesty
dne
yakkety
dne
xenial
not-affected
trusty
dne
precise
dne
linux-hwe-edge
zesty
dne
yakkety
dne
xenial
not-affected
trusty
dne
precise
dne
linux-linaro-omap
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
ignored
linux-linaro-shared
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
ignored
linux-linaro-vexpress
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
ignored
linux-lts-quantal
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
ignored
linux-lts-raring
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
ignored
linux-lts-saucy
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
ignored
linux-lts-trusty
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
Fixed 3.13.0-73.116~precise1
released
linux-lts-utopic
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
Fixed 3.16.0-56.75~14.04.1
released
precise
dne
linux-lts-vivid
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
Fixed 3.19.0-41.46~14.04.2
released
precise
dne
linux-lts-wily
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
Fixed 4.2.0-21.25~14.04.1
released
precise
dne
linux-lts-xenial
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
not-affected
precise
dne
linux-maguro
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
dne
linux-mako
zesty
dne
yakkety
not-affected
xenial
not-affected
wily
not-affected
vivid
not-affected
trusty
dne
precise
dne
linux-manta
zesty
dne
yakkety
dne
xenial
dne
wily
not-affected
vivid
not-affected
trusty
dne
precise
dne
linux-mvl-dove
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
dne
linux-qcm-msm
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
ignored
linux-raspi2
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
not-affected
vivid
dne
trusty
dne
precise
dne
linux-snapdragon
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
dne
trusty
dne
precise
dne
linux-ti-omap4
zesty
dne
yakkety
dne
xenial
dne
wily
dne
vivid
dne
trusty
dne
precise
not-affected
virtualbox
zesty
not-affected
yakkety
not-affected
xenial
not-affected
wily
Fixed 5.0.14-dfsg-0ubuntu1.15.10.1
released
vivid
Fixed 4.3.36-dfsg-1+deb8u1ubuntu1.15.04.1
released
trusty
Fixed 4.3.36-dfsg-1+deb8u1ubuntu1.14.04.1
released
precise
ignored
xen
zesty
Fixed 4.5.1-0ubuntu2
released
yakkety
Fixed 4.5.1-0ubuntu2
released
xenial
Fixed 4.5.1-0ubuntu2
released
wily
Fixed 4.5.1-0ubuntu1.1
released
vivid
Fixed 4.5.0-1ubuntu4.3
released
trusty
Fixed 4.4.2-0ubuntu0.14.04.3
released
precise
Fixed 4.1.6.1-0ubuntu0.12.04.7
released
Common Weakness Enumeration
References
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cbdb967af3d54993f5814f1cee0ed311a055377d
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172187.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172300.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172435.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00035.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00026.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00031.html
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00013.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html
http://lists.opensuse.org/opensuse-updates/2015-12/msg00039.html
http://lists.opensuse.org/opensuse-updates/2015-12/msg00053.html
http://rhn.redhat.com/errata/RHSA-2015-2636.html
http://rhn.redhat.com/errata/RHSA-2015-2645.html
http://rhn.redhat.com/errata/RHSA-2016-0046.html
http://support.citrix.com/article/CTX202583
http://support.citrix.com/article/CTX203879
http://www.debian.org/security/2015/dsa-3414
http://www.debian.org/security/2015/dsa-3426
http://www.debian.org/security/2016/dsa-3454
http://www.openwall.com/lists/oss-security/2015/11/10/5
http://www.openwall.com/lists/oss-security/2023/10/10/4
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
http://www.securityfocus.com/bid/77524
http://www.securityfocus.com/bid/91787
http://www.securitytracker.com/id/1034105
http://www.ubuntu.com/usn/USN-2840-1
http://www.ubuntu.com/usn/USN-2841-1
http://www.ubuntu.com/usn/USN-2841-2
http://www.ubuntu.com/usn/USN-2842-1
http://www.ubuntu.com/usn/USN-2842-2
http://www.ubuntu.com/usn/USN-2843-1
http://www.ubuntu.com/usn/USN-2843-2
http://www.ubuntu.com/usn/USN-2844-1
http://xenbits.xen.org/xsa/advisory-156.html
https://bugzilla.redhat.com/show_bug.cgi?id=1278496
https://github.com/torvalds/linux/commit/cbdb967af3d54993f5814f1cee0ed311a055377d
https://kb.juniper.net/JSA10783
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cbdb967af3d54993f5814f1cee0ed311a055377d
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172187.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172300.html
http://lists.fedoraproject.org/pipermail/package-announce/2015-November/172435.html
http://lists.opensuse.org/opensuse-security-announce/2015-11/msg00035.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00026.html
http://lists.opensuse.org/opensuse-security-announce/2015-12/msg00031.html
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00013.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00015.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00038.html
http://lists.opensuse.org/opensuse-updates/2015-12/msg00039.html
http://lists.opensuse.org/opensuse-updates/2015-12/msg00053.html
http://rhn.redhat.com/errata/RHSA-2015-2636.html
http://rhn.redhat.com/errata/RHSA-2015-2645.html
http://rhn.redhat.com/errata/RHSA-2016-0046.html
http://support.citrix.com/article/CTX202583
http://support.citrix.com/article/CTX203879
http://www.debian.org/security/2015/dsa-3414
http://www.debian.org/security/2015/dsa-3426
http://www.debian.org/security/2016/dsa-3454
http://www.openwall.com/lists/oss-security/2015/11/10/5
http://www.openwall.com/lists/oss-security/2023/10/10/4
http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
http://www.securityfocus.com/bid/77524
http://www.securityfocus.com/bid/91787
http://www.securitytracker.com/id/1034105
http://www.ubuntu.com/usn/USN-2840-1
http://www.ubuntu.com/usn/USN-2841-1
http://www.ubuntu.com/usn/USN-2841-2
http://www.ubuntu.com/usn/USN-2842-1
http://www.ubuntu.com/usn/USN-2842-2
http://www.ubuntu.com/usn/USN-2843-1
http://www.ubuntu.com/usn/USN-2843-2
http://www.ubuntu.com/usn/USN-2844-1
http://xenbits.xen.org/xsa/advisory-156.html
https://bugzilla.redhat.com/show_bug.cgi?id=1278496
https://github.com/torvalds/linux/commit/cbdb967af3d54993f5814f1cee0ed311a055377d
https://kb.juniper.net/JSA10783