DescriptionUse-after-free vulnerability in the FIFO event channel code in Xen 4.4.x allows local guest OS administrators to cause a denial of service (host crash) and possibly execute arbitrary code or obtain sensitive information via an invalid guest frame number.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severityhigh

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
xen (PTS)stretch (security),
buster (security)4.11.4+57-g41a822c392-2fixed
bullseye, sid4.14.0+88-g1d1d1f5391-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
xensourcewheezy(not affected)


[wheezy] - xen <not-affected> (Versions 4.3 and earlier are not vulnerable)
Only affects Xen 4.4, as workaround it is marked as fixed in the first xen version entering unstable
after the 4.4 series.

Search for package or bug name: Reporting problems